GPS Spoofing With The HackRF On Windows
Vložit
- čas přidán 3. 07. 2024
- Note: I said 2.5ghz in the video but I meant 1.5Ghz for GPS signals. My antenna was 430mhz
Would you like to help me fund a new camera for the Channel?
Then visit my GoFundMe page here: www.gofundme.com/f/tech-minds...
Here we take a look at how to GPS Spoof with the HackRF SDR Transceiver.
Software used in this video:
github.com/osqzss/gps-sdr-sim
ftp://cddis.gsfc.nasa.gov/gnss/data/daily
downloads.myriadrf.org/builds...
Want to learn more about HackRF, join the HackRF Facebook group: / hackrf
Products used in my videos can be purchased through my Amazon storefront including the HackRF.
US ► www.amazon.com/shop/techminds
UK ► www.amazon.co.uk/shop/techminds
Support This Channel by becoming a Patreon.
My Patreon ► / techminds
My Twitter ► / techmindsyt
My Amazon ► www.amazon.co.uk/hz/wishlist/...
My PayPal ► www.paypal.me/mobiledev
Merch Store ► teespring.com/stores/techminds
If you enjoyed this video please help me out by subscribing and help me get to my next Milestone of 50,000 Subscribers!
Music: www.bensound.com
#TechMinds #HackRF #GPSSpoof - Věda a technologie
Watching this for a college project, and it’s funny because I live not far from where you picked your GPS to be located. Freaked me out for a moment when you pretty much zoomed in on my location 😂
I know
That’s super cool! I have to do this for a final project at my universities cyber range. I’m not worried about doing it, only the documentation 😅.
This works wonderfully (june 2023). I only needed to make an account at nasa to be able to download the needed file.
Now i can let a friend play his PokemonGo game (from a chosen location) without his need to cheat on his device.
What model phone are you using?
may I ask what antenna you use on your hackrf?
Its your british accent that i love
Thank you :)
@@TechMindsOfficial tryrrrrerertwre
@@TechMindsOfficial eereerereereteeteewrreeee I rfo
I've managed to do it finally, thanks for the video.
Hi. Can you please help me how you did it?
I have been trying in the same way. But my mobile GPS isn't getting spoofed location.
@@TheDeepajha Hi, have you switched off the wifi of your cellphone? it is a difficult for me to check what is blocking remotly. May be you could join the discussion on Discord channel of Techminds to check that.
Can you please tell me how to join that discussion?
@@TheDeepajha czcams.com/users/redirect?event=video_description&redir_token=QUFFLUhqa1U5R0pMS2I2al9uS2FxZkxJeTkyVWlSRTRGd3xBQ3Jtc0tuNXJTYThVelZOT0tlNGIweGE2OVloUHFYaU5yY1dVZ05iekFfT0lCWDM3WGNEQXBDbXlSc2N0Z1hBVG1nZm5Rb2lnQVlmNmd6bkdMeUl3ekh5S0N6SHpZOXB6ckx2bmdKdm5vX2NUQ2lKX1hoYlVfUQ&q=https%3A%2F%2Fdiscord.gg%2FUhm6gZF
@@TheDeepajha Did you get any help/ were you able to resolve the iisue?
you're a long way from kansas dorothy :)
Very Gr00vy!
around the world in just 10 sec ;)
Hi from Kansas City! (Maidenhead coordinates EM28QW to be a little more precise). As Andrew Beals previously commented, you actually chose a location in Missouri, not Kansas. Kansas City is kind of confusing, since it is the name of a city in two different states (Kansas City, Missouri and Kansas City, Kansas). Thanks for the video!
n e R d
it is working, thank you so much.
Android or iPhone?
with a gnss-gps receiver but is also work for android and iPhone @@Qcem
Amzing job very clever
Hello sir, is it possible to change the transmitter antenna to one suitable for the mentioned frequency and will the transmission range increase, thank you
What type of antenna you used with hack rf for gps spoofing
Yesterday, I made a prank video using this near the airport.
Tomorrow, I'm having my trial...
:P
No worries, Pilots are not allowed to use GPS as the primary navigation or landing system. Now you know why.
@@deBug67 meh. Probably more of a holdover from the widespread use of Selective Availability back in the 20th century. Manned aviation regulations tend to move slow in my experience.
Do I need to obtain the the brbd data on a daily basis for the sim to work?
Hi, Thanks for the video ... but it didn't work for me !!! I don't even receive GPS signals (I put my phone - Sam S10+ on airplane mode and i'm in a controlled env. Using Windows 10). What am i missing?
Are you using attenuators?
Cool video :)
Thanks!
What would be a good antenna to use for this?
is there any easy way to transmit the gps signal using adalm pluto?
Отличное видео! Спасибо!
interesting yes... I'm into geocaching.. I could imagine making a geocache in a shed - and make players believe I've made a very quick travel machine - enter the shed please and check your gps... now leave again.. and wouw - was that fast or not?
nice! How about having a tardis in your garden that teleports you around the world? you could add sound effects. the Tardis noise, then the sounds of new york or somewhere.
Did I hear around 2.5GHz correctly? Civilian frequencies For Block IIA, IIR, IIR-M and IIF:
L1, 20.46 MHz bandwidth, centred around the nominal frequency of 1575.42 MHz
L2, 20.46 MHz bandwidth, centred around the nominal frequency of 1227.6 MHz
I meant 1.5ghz not 2.5ghz 😩
@@TechMindsOfficial
👍
@@TechMindsOfficialhi man, is there any way to spoof several gps co-ordinates simultaneously at the same? Or run a setup where several different gps co-ordinates are automatically alternated very fast between several locations.
another thing!!! can we do this without adding coordinates from the google maps? I mean just by feeding the rinex file from a different date. Obviously the position of satellites would be different and eventually it would result in wrong position
can you create video where how i can try to dynamic spoofing? i mean I have a certain route, and so that it would be broadcast through hackrf
Great. How to create the gps-sim-sdr.exe. I am facing problems creating .exe file from the c code in Visual Studio.
How to constantly posting the spoofed coordinates?
In your video,the spoofed coordinates should be transmitted till 5 min,right?? Suppose i want to transmit a spoofed location for longer time say 10 hrs,how to do that??
i am not able to download the curent year brdc file from the cidss
Hi
Nice presentation! How many Sat (SV) can you generate? Is the limitation of 300 s because of the baseband memory of the HackRF? If I record in my location GPS and GLONASS, and then only change the location, will it work?
Nope there's a workway around
@@inavigator1779 appreciate any tips and elaborations ;-)
Nice way to make the google location history go nuts. Make yourself levitate over the ocean and go to the mouth of a volcano. It will me a nice location history map.
Thanks you I made it all the steps however doesn't work anymore :( Nasa doesn't offer future position for the satellites , any suggestion? or please could you make an updated version of the video ?
You'll need to make an account, but it looks like they moved it
cddis.nasa.gov/archive/gnss/
Thanks for a video mate ... do you try tx fake GPS signals , I do it using ubuntu and some libraries...
Hi, can you explain a bit more how do you tx fake GPS signal using ubuntu and libs? I mean if there's any tutorial or guide I can follow.
Hi there,
I just want is to simulate a GPS position of my home when I'm not at home.
Please indicate me if you want, the possibility to do this with a minimal hardware cost.
I just take a look around net in order to find HackRF hardware but there is a lot of type...
I just need to simulate the GPS for about 20 seconds until I login in my work office remotely.
Can you indicate me witch minimal hardware HackRF can I buy please ?
Thanks a lot for the video
ftp is not accessible using Chrome browser do we need anything else?
i got that Error {ERROR: Invalid I/Q data format.} after flow your toturial please is possible told me how to fix it
Ideal if your a spy but not practical. Hack RF is a don bit of kit. I need one maybe 2 lol.
Wait so this means if you take that to a Pokemon Go event you could theoretically get hundreds of players banned in a few seconds...
Oh fuck me
Very interesting I like it, is there any way to achieve this with anything but a HackRF? They are a bit pricey for me at the mo...
(Oh also apparently first comment too!)
Search online. The HackRF is "open source" public domain. You can buy a knock-off, off brand for around $80 US.... Most work great !
@@buzz-es Yeah I've seen some on AliExpress but I've had issues before withe rother things so I like to buy only from a "known good source" these days unless it's cheap as chips! When I got some more spare cash I'll look again.
Is it possible to spoof starlink dishy?
Hello, Amazing Video. I've got one question. is there any way to run this script while the Hackrf is on Portapack mode? So that way I don't have to carry my laptop with me? As long as I keep the files on the microsd card on the Portapack H2+
No TOTO, we actually *ARE* in Kansas, look!!
How dose this work? I tried it and did not teleport to london. Is there a portal that opens in my living room?
it shows me "illegal option -- 1" when I execute the gps-sdr-sim -b 8 -e brdc..... longitude, latitude, altitude" command. May I know how to fix this?
you are missing -l in command
how do you set it to keep repeating indefinitely and not stop after it gets to the end of the file
thêm - R
That is really cool lol
Do you know what might be wrong?
I'm getting the failed: HackRF not found (-5), windows 10
you have tu plug the equipment Hack RF One in uSB
Hi, the ephemeris files available at cddis websites are no longer available, now .gz files are only available, will this work the same with these files?
extract them and you will get .n file
Hi. I have been trying to achieve this in the same way. But my phone Gps App doesn't show the spoofed location. Can you please guide me how to go about it?
man, turn on "airmode". phone may synchronize it's geoloc through telephone cells
is this what people are using to spoof their locations of helium hotspots with rf actuators too do you think?
You managed to set it up?
Thanks for the tutorial, is there any way to change the gps position whilst the command is running without rebuilding the .bin file?
I would like to send a command to move a few meters for example, without my android phone loosing its simulated gps lock. thanks
I don’t believe you can change without recompiling the BIN file, at least not with this method.
If you check the github repo, in the readme you can find the way to generate a .bin file which plays back a RINEX or a user motion or an NMEA GGA stream file. With this technique you can simulate motion. I have not tried it yet, but planning to do so.
@@StillGraffHere can we use a RINEX file to spoof the user position? by RINEX file I mean I have already recorded data but it was collected in 2017.
ugg cant find the .exe and I just cant bring myself to spend hours trying to compile it.
I don't know if someone has already had this problem but the 1rst time I tried this tuto it worked. But now it doesn't work : my GPS isn't affected by the signal of the HackRF. Someone has an idea?
I have the same problem. Did you solve it please ?
On Sdr github page the .exe for 64 bit doesnt exist. there are NO release. How we do?
eu estou procurando o arquivo GPS-SDR-SIM.zip que não está mais disponível e eu não sei como compilar ele para se ter.
can we use RTL SDR?
@J I am using rtl sdr for an position determination but it isn't working at all.
The windows keep opening and closing but rtklib isn't getting any data
Useful if your wife keeps track of you via GPS. :)
if a wife has a bf (common in USA) find his address and put it in . she will be like wtf
That would be a waste of hardware. There are already apps on Google play store that let you spoof your location.
a divorce lawyer would be more useful imo
Don't we need to use a TXC0 with the hackrf One to spoof GPS signals ? As far as I have tried (without it), it does not work. Neither on Windows 10 nor on SigintOS. I will try later another RF Gnu/Linux based distro if I can but I seriously doubt it will work without it any way.
For my test I did not use a TCXO. Make sure you try with -b 8 as shown in the video. :)
R4F Be sure you turned on localization but for device only (not based on BLE or WiFi). That can be a thing too ^^
@@TechMindsOfficial Yep me neither @R4F , just to be sure, what is your HackRF One firmware's version ? =3
R4F Hummm... strange, as far as I know, latest portapack devices include a TXCO.
R4F Yep it needs further investigating then :p. I just ordered a TXCO for one of my H1. I will see in the future how it goes... or take a good « soldering time » if I am to impatient ^^
Tested it with hackRF/portapack (blue edition including TXCO 0.5 ppm) but it dont works... neither Iphone or car GPS in garage decoded the given location. I followed exactly the steps advised... monitored output signal with RTL-SDR and a signal was transmitted on 1.575. What can be the issue? Is the 0.5ppm TXCO not stable enought? Someone here who get it working with hackRF/portapack sucessfully?
Well, modern devices rely on much more than just a single positioning system. My device supports both GPS, GLONASS and GALILEO
That is right. To generate GPS signals, you must have a very accurate CLK. In video he tried to generate the signal without using an EXT CLK. How can even he generate the signals?
Hi, I am posting the question again here. Actually I have done a simulation of varying the ephemeris data which resulted in location changing.
I want to develop a Record, modify and replay attack. Is it possible in Matlab environment?
tried it on both iPhone 11 Pro Max and Samsung S10 Plus.
Both hdevices acted like they were being jammed. I had WiFi, BT, and percise location services OFF using other apps turned OFF. Actually i had airplane more and nothing running.
Also tried all 3 samples rates, 2.5 2.6 and 1.25.
Devices showed they reach 30-35 satelites and when i was turning ON the spoof i was losing connection to all satelites and no signal/location was detected.
Any ideas ?
Could I jam my ankle monitor?
I can go until the RF transmission, but the location in the US is not detected through internal of Android smartphone. Anye clue ? thanks
it is because modern smartphones use AGNSS and multi constellation positioning.
@@superbcutter16 it works with an Iphone6
why did the time on your phone not change?
🤷♂️
Any ideas if I followed the steps exactly and my phone doesn't receive spoofed gps? Did you use a special antenna?
What phone? Turn off your WiFi and take SIM card out or disable network as it might be pulling A-GPS
@@TechMindsOfficial I did it with airplane mode on. android
I tried it with two different android phones actually
@@dyndel15 Did you solve the problem ?I also face the same problem ....
Great tutorial, but I need your help. Last week I do exactly the same to this video spoofing, and it’s work fine with iPhone. But currently unfortunately it is doesn’t work for iPhone. Currently it is work only for android device. What can I do for improve spoofing?
may I ask what antenna you use for your hackrf? I currently use ANT500 and I could only detect the signal hackrf transmit but location can not be changed
@@yugegao7493 it is very wide and direct antenna . Looks like triangle.
ERROR: No current set of ephemerides has been found
Why bro?
Hi can you update it please? 2024 and not working anymore
You zoomed down into Kansas City, _Missouri_, and not far from a place with decent pizza, but it's not in Kansas. Also, at the point you picked, ground level is just about 300m above sea level. Sure, KCMO is next to Kansas, but it's not particularly close to the geographic center of the contiguous United States (CONUS) aka "The Lower 48". That location would be in Lebanon, Kansas, and is 39.833333, -98.583333.
How do you simulate walking?
Lay down in bed and put your feet up in the air. Move one foot in front of the other in a walking-like motion.
Otherwise use the -u option of gps-sdr-sim and pass in a user motion file.
@@davemarm I found out how to thanks.
What is the maximum distance between HackRF one and mobile phone at 1.5 GHz frequency. Is it possible to see what power in dBm the HackRF one transmits on this frequency. I am also interested in whether the radiation of the HackRF one antenna is directional or non-directional.
modern cells ignore spoofing
Still vulnerable to spoofing attacks just need some modification
Which modification is needed? Last week I do exactly the same to this video spoofing, and it’s work fine with iPhone. But currently unfortunately is doesn’t work for iPhone. Currently it is work only for android device. What can I do for improve spoofing?
use a 50 dB attenuator to decrease the signal noise; make sure to turn off the automatic date and time of the phone. Make a fresh boot in airplane mode to avoid taking GNSS data from GLP and network, if necessary, flush the A-GNSS data from the phone to make it rely only on GNSS. Lastly turn off the wifi and Bluetooth scanning. @@Sfgvghb-xv2gq
Would this work for Uber drivers ? since phones are getting GPS signals from cell towers as well.
Tried exactly steps but my phone never locked on gps, I can see signals bar but no gps luck, would you help me
I'm trying this 2024, It's not working!
at what freq and sampling rate did the transmission through HackRf takes place?
As you can see in the video @6:30
The frequency is set to 1575420000 Hz, and the sampling rate is set to 2600000 Hz
Did not work for me :(
@@julienperret3178 what is the right antenna?
Does this then mean that you, for example, could listen to Police/Fire/Ambulance in a diferent location if, i.e., your local is encrypted?
You still need to receive that police signal. Your actual location must be within range.. of course
Your spoofing a place in Missouri, not Kansas. It's named such as it's at the confluence of the Kansas and Missouri Rivers. Kansas City, Kansas came later and took the name of the larger Kansas City, Missouri. If you wish to read more: kchistory.org/faq/why-there-kansas-city-both-kansas-and-missouri
Thank you sir for the information. I’m not very good when it comes to US states 😩
Is the Hack RF just not really compatable with a Mac? Am I better off to buy a windows laptop instead of pulling my hair with Mac?
A lot of command line application use Linux with the Hack RF
Use a virtual machine with linux on your trashy MacBook
How do you set this to transmit for longer than 300 seconds?
whats the difference between dynamic and static?
with the -d argument then put in the no of seconds u want ie. -d 500
No this is legal
у кого получилось ?
GPS jamming is becoming a problem for air traffic in Finland and northern Norway. This would be much more dangerous as the pilots might not realize something is wrong if you were to fake another path. Hope the Russians don't get any ideas..
Russians have long been realizing these ideas, you are late with your hope)))
Any reports of them actually transmitting a fake path? Can't find any.
Russians jammed US aircraft in Syria. Modern planes switch to a INU backup if the GPS was s unreliable
@@kerbalairforce8802 INU means inertial navigation unit?
You do realize that this is highly illegal all around the world, right?
Most countries don't take kindly to transmitting on GPS frequencies. In Australia where I am some cab drivers got serious fines for doing this. Our regulator takes the view this activity could cost a life given that emergency services now rely on GPS. So be very careful with your emissions.
@@vk3fbab They most likely weren't even spoofing, just jamming...
@@rkan2 ACMA in Australia makes no distinction between spoofing and jamming. They both involve unlicensed transmission by unlicensed individuals with unauthorised transmitters. It's pretty serious stuff here, understandable given the aviation and emergency services use GPS.
@@vk3fbab The same goes for pretty much any country...
It doesn't transmit more than a few meters.
There's 0 risks.
mozilla no longer support ftp files to browse