RTL-SDR - an SDR receiver from a cheap DVB-T tuner on a USB connector

Police MOTOTRBO cannot be decoded with DSD, because DSD cannot break a binary key, only once. And two, DSD doesn't even have the option of typing the key. If you are familiar with Linux, you can do it with Airprobe. The same goes for TETRA. Airprobe is a GSM demodulator, but apparently it can handle both TETRA and MOTOTRBO. The process of "getting" the keys - because there are two in TETRA, it is the same as in the case of WPA2, that is, catching packets and then Kraken ... GSM dump can also be useful. You will need a powerful graphics card that supports CUDA or, in the case of Radeonstream, to search the packets. Preferably several cards with, say, 300 cores. You can do one too, but you have to be "a little" patient. The matter is greatly complicated by the lack of rainbow tables. They are standard SSSids for WPA2. You have to generate custom ones yourself. There are for GSM, but ... they are 2TB files. Neither MOTOTRBO nor TETRA is available, and I do not know what such boards should look like and whether there would be any sense in generating and sharing. It makes no sense as such arrays are generated for one specific network and it is not possible to create a universal one. Therefore, in the case of GSM, it is as much as 2 TB because someone went to so much trouble to generate networks for most of the networks. Probably the Germans did it on some university machine for big calculations. TETRA has two dynamic keys - that is, two variables and assigned based on a fixed algorithm. In GSM it is identical and the GSM dump catches packets nicely and the Kraken later searches for login keys that we sign to Airprobe. This means that we grab millions of packets first, and then act on them. Fortunately, GSM and derivatives emit hundreds of thousands of keys in one hour, or maybe more. One BTS can handle 50 users at a time. Within an hour, it will be different users .... In the case of MOTOTRBO there is one, static key. Something similar to the old WEP that kids in kindergartens today break using "press and wait a few minutes" programs. I am surprised by such nonchalance in the service, but after all, it seems to be quite a handicap for the listeners. Unsecured transmission is provided by e.g. an ambulance service in the vicinity of 168MHz. Major services use TETRA. Until recently, this system was extremely difficult to eavesdrop on, just like GSM. Today ... any radio broadcast can be intercepted and decoded. It's just a matter of computer processing power. But with the right set of graphics cards, you can do a lot in a reasonable amount of time. As you can see odbiordaski you already have, now some computer with equipment for about 6-7 thousand, Linux support from your finger, several drives for several TB of files and we go I warn you right away, it is not in line with Polish law. Analog broadcasting police can be listened to, but breaking the security of intentionally encoded transmission is against the law. With GSM, unsecured network information can be received. These are SMS-CB with announcements and various discussions, also BTS names, BTS often send network information in the form of a network name but also with a street name. You can read this without risking the later choice between secretary and sucker. Of course, data reception and data breaking is difficult to detect, because it is passive hacking - nobody sends packets over the network. Because there is no such need, the network itself generates millions of packets. It does not change the fact that I will repeat that breaking the transmission security is punishable by law. The video describes the LEGAL GSM reception process. Mrs. Shannon (Yes! Married!) Describes exactly, runs like a child's hand, what exactly needs to be installed and how. Not to mention the "pluings". Good knowledge of the English language required. I wish you successes!
https://www.youtube.com/watch?v=FqtJ-TvtLTQ

Mr. Piter K. I don't want to read it after the first sentence:

Piter K. wrote:

... if you are familiar with Linux, you can do it with Airprobe ...

You may have knowledge, but probably not in this area.

in DMR, the key is not broadcast by radio and that's enough. Even if you try to catch it with a fly-trap, you will not succeed.

Anyway, I don't know what you are doing in this department. You haven't written any wise advice here at this point.

I don't know what you mean. Maybe what you think. What do you consider wise and what do you consider less. You didn't use any arguments. Airprobe is a demodulator where you can add a key. You obviously don't have the ability to read longer texts. And that is reading comprehension. I wrote that DSD does not offer the possibility of adding keys. So why waste electricity on police MOTOTRBO decoding? Man will see frames and so what? It can be DSD + DSD - or even DSD%, and nothing will change that. There were tutorials on how to use Airprobe to go to MOTOTRBO, which means that the lack of key transfer does not bother you at all. The problem is, you are trying to discredit me without the slightest knowledge. If no key is available, a brute force attack is performed, own keys are generated and one matches are tried. This is what the Kraken does. Kraken can also perform dictionary attacks. Don't get it wrong. This is not about hitting the radio with the PWN dictionary. It is a file with various words, numbers, numbers, and letters. Unfortunately, when entering passwords, an ordinary processor fills the legs, which is why graphics cards are used for this purpose. I will not elaborate on why. If you did not understand the previous post, you will not understand how CUDA or Stream works. Suffice it to say that it is not the CPU but the GPU that is important here and it is not about processing graphics, but computing. Multiple calculations in parallel, at once. There are also tutorials for TETRA, just look for tons of it. What am I doing here? I don't know, it seems to me that since I have modified several RTL SDRs, built several dozen antennas in my life, have been using RTL SDR for about six years, I think I know something and I can share it. You don't take one thing into account. Each SDR receiver can be defined as a network interface. Then we intercept the digital transmission and analyze it with a sniffer, for example. And in the video, Shannon Moor shows how to do it. Not only that, the chick shows you how to use GNURadio and you think that it is not help? But you probably don't know what a sniffer and an interception network interface are. So how can you get up to speed about DMR? The main advantage of SDRs is that they can be used in a fairly simple way to decode digital broadcasts. The problem is that Windows has very little to say when it comes to decoding and decryption. This is where Linux bows. The video in my post shows how to start a Kali virtual machine, where RTL SDR is standard. There is also QGRX but I prefer SDR Studio for example and the last SDRSharp is ok too. I also use SDRuno. But there is, and there was actually one problem. Well, you can not add a modified driver to these programs - which, by the way, I have made available in this topic, I do. The driver enables listening to short waves on RTL SDR without a converter. But this probably does not interest you because there is no DMR on KF. Others are probably interested. After tossing the driver, just connect, for example, LW and listen to seven or eighty, unfortunately DMR is not there. Currently I use a converter, it is much better than a driver, but you have a driver as a gift, and you have to make the converter yourself, or pay and buy it. The driver is not as good as a short wave radio, but ... without the need to build a converter, we have access to short waves, up to 3MHz. Writing that it is not as good as the radio, I mean the AOR AR8000 and Kenwood r1000 because I can compare the reception with them. What gives us the launch of KF on e.g. SDRSharp? Direct ability (without the need for a cable) to decode SSTV, RTTY and others. Obviously not DMR, which you are an expert for, which I respect. SDR is also a panorama. I know, a difficult word, spectral analysis sounds scary too. Well, using the waterfall - where these lines fall, as someone broadcasts, we carry out a spectral analysis of the selected band. For example, I have 2.7KHz filters in my receivers and only this section of the band is heard at a given moment, if I want to check what is happening in another part, e.g. 14MHz (I'm listening now), I have to turn the knob. In SDR I can see everything, in the case of some models even the 50MHz band. In the case of RTL, it is a bit above 2MHz. But ... 2MHz is half the 6m band. 40m is only 200KHz, I can see all seven and can quickly check if someone is transmitting. This is very important when checking propagation conditions. It is useful at 6m and 10m, I used to love to "listen" to 15m, I decoded PSK31 and RTTY but now there is no propagation. I did it on the driver itself. But there is one more thing. You can download pictures from the satellite, it is WEFAX and not DMR, but HD. Yes, it's not the ones from the VHF. At a frequency of around 1500MHz, the same satellites transmit a signal with increased resolution. Unfortunately the RTL SDR on the R820T DOES NOT RECEIVE at 15000MHz. Officially it receives, in the data we have that it works up to 1700MHz, but in fact the reception is only until warming up. There is a driver which in turn fixes this defect. I did not install it, because I did cooling. I showed you how to do it, but it's not DMR and you probably didn't pay attention. The text is long and you probably won't read it, maybe it's better. If anyone is interested in microwave RTL SDR satellite reception, I can send a link to a 1500MHz helix antenna. It is also possible to add a sat converter and receive the 10GHz band. Converters without DRO are already available (it's not DRM, nothing like that), which guarantees an extremely stable reception. The DRO floats and there is synthesis in this converter. I have one, I have already done rehearsals. 10GHz is being received at a frequency of around 600MHz. Saudi Arabia was supposed to launch a satellite with a 3cm transponder. It is supposed to be a geostationary satellite, so you can hear stations from the other half of the globe without the Doppler effect, without having to wait for the flight. Why SDR RTL? Because you have to go down to the intermediate frequency - something around 600MHz. If someone is interested, I can give the exact one later. The "normal" receiver has a "hole" at this point. My AOR doesn't care about that as there are no holes, but it also holds the price tight. In the case of RTL SDR, you can have a set of less than PLN 100 But I don't know myself there, and I don't know what I'm doing here, I'm stupid.

Thank you again for your answer. I changed the city (bigger and higher "I'm sitting") so I will try to decode something, because unfortunately in my hometown there is an analog on the repeater.
In the city where I am now, I hear something like that - could you tell me what it is and is it possible to decode it? Is it also DMR?

Best regards.

There is progress!
DMR decodes - there are transmission errors, I guess it's a matter of settings and of course the signal. Could you give me any beginner tips on how to setup a DMR?

Best regards.

You have inserted a recorded alarm panel above.

You have a sample, for example here:

https://www.sigidwiki.com/wiki/Signal_Identification_Guide

http://www.w2sjw.com/radio_sounds.html

http://www.kb9ukd.com/digital/

Hmm switchboard? So it won't do me any good?

Oooo great! The samples will be very useful. Thank you very much!

You need to extend your bandwidth. Preferably up to around 60KHz. You will do this either on the strip underneath the emissions or by simply extending the strip with which you hover over the transmission. The signal cannot be noisy because there will be a loss on the frames. In my region, the emergency service has switched to MOTOTRBO, you can search on 168MHz. If it growls, try to decode. At 157MHz, you can't count on decoding without gimmicks. Same on the 172-174 band. The thing is that you can only listen to the VHF 2m band and the ambulance without the combination. Forget about border guards, prison guards, CBŚ, CBA and in some cases the police. In some, because in many cities, analog transmission and MOTOTRBO are used together with the advantage of the former. There is a reason for this. Digit does not like built-up areas with their reflections and sudden signal drops very much. Paramedics complain that there was once a buzzing noise, but it was. Today, in these places, you can hear nothing - there is no communication. The radios are terribly expensive, the possibilities are like a Swiss army knife, but with one major disadvantage, if the signal starts to drop, it will be noisy, the transmission will be completely unreadable.

Piter K. wrote:

You need to extend your bandwidth. Preferably up to around 60KHz. You will do this either on the strip underneath the emissions or by simply extending the strip with which you hover over the transmission. The signal cannot be noisy because there will be a loss on the frames.

Do not mislead your buddy and write such nonsense that you have to set the bandwidth to 60kHz to receive DMR frames well. On the contrary, the band should be set wide enough for a given modulation so as not to pick up noise next to it, because it also has its own audio frequency and the DSD + program will decode the modulation with errors.
First, my friend, read exactly "what and how and with what" and then advise. Below I am giving the width of the NFM bandwidth setting. It is included in the description of the FMP program, so that the DSD + program with VAC decodes well the modulation for the given modes. You can find it in the file downloaded from the dsd + website. I would like to add that after my DMR tests in the SDRSharp program it is best to listen to narrow FM with a width of 9.5kHz.

4 kHz modes:

D-STAR
DSTAR
IDAS
NX48
NEXEDGE48

7 kHz modes:

DMR
TRBO
Cap +
Con +
TIII

9.5 kHz modes:

NXDN
NEXEDGE
NEXEDGE96
NX96
P25

12.5 kHz modes

PV
ProVoice
C4FM FUSION
any other text string (analog, LTR, ...)
Best regards and I wish you successful listening sessions. I recommend reading this topic as reading.
https://www.elektroda.pl/rtvforum/topic3182271.html

TRBO is officially 6.5KHz but from my experience I know that the signal goes beyond this. 60KHz may be an exaggeration, but such filters used to be used to receive various digital transmissions. There is nothing to argue about, if he set it to 60 he would surely receive the signal without distortion. Anyway, just look at the waterfall. If I hadn't seen, maybe I would have believed in paper. But I have seen and know that TRBO transmits more widely than normal transmission, analog voice transmission. If the radios have a 12.5KHz filter, it should go like this. And yet I have seen stripes close to 25KHz, I cannot assume that this is the norm. The general rule is that the reception bar should cover the entire signal band. No matter how much he has. If it is narrower, distortions will appear. In the past, I have to use this phrase, because I can see that it has changed, digital data transmission had to use a wider band than voice transmission. And yes, there were 50KHz filters, or 2X25KHz for packetradio 9600. No matter A colleague may narrow the band, maybe it will be better

Buddy, you are confusing the two basic concepts of audio transmission width and channel width. Receiving frequency with channel width, e.g. 9.6KHz with 48KHz audio transmission width. This is the basic mistake many people make. Take a look at the photo and think about what I wrote and what you write. "Bandwidth" is the width of the receive channel and it should be max 1kHz larger than the transmitted signal, ie example C4FM FUSION has a channel width of 12.5kHz you set around 13.5kHz then DSD decodes well. And "Samplerate" is the width of the received audio and is not the same as the width of the channel. Therefore, 48kHz is set there and this is the basic setting for digital modulation.




Best regards.

Thank you for your comprehensive answer. Nevertheless, I believe that TRBO has a broader signal than analogue voice broadcasting in FM. This can be traced nicely on the police band. But that is not the topic. If it goes as it should, it is OK and there is no need to beat foam. Although, even on this occasion, you can learn something for which I thank you.

Yet, regarding the received signal on the waterfall, there is no point in taking into account its width. The fact that it is visible wider in the spectrum does not mean its natural channel width. Simply by SDRSHarp, reflections are visible with strong signals. For comparison, in the photo you have a strong and weak signal transmitted on the same frequency and the same bandwidth. I consider the discussion on this closed to be closed. Best regards.

Hello colleagues. Recently, in January, the news about the new version of "Krypto 1000 v1.009" appeared on the web. According to descriptions and photos, the program decodes most of the digital broadcasts. Has anyone ever dealt with this program and could describe how it works? I tried to find at least a demo version on the web, but only the "Krypto 500" version is available.

https://www.comintconsulting.com/news

But it's probably a commercial, professional program. I was looking for a download option and did not find it. But tomorrow, after work, I will look in the so-called "alternative sources" and see what I find. I found the Hoka Code in a similar way.
Edit.
There is nothing

For those interested in the SDRSharper program, a new version is available from 07-01-2018, but only released a few days ago. Below is a link with the program.

http://www.qsl.net/sdr/SDRSharper_06l.zip

Here is a curiosity.

Receiving FM stations on 80.2MHz and 76.5MHz.
Japan-Osaka



You can't move without such a tuner.

The only FM station that catches on CCIR is on 88.1MHz.
The stations fly sequentially 88.1 / 85.1 / 80.2 / 76.5
The key is AGC and the appropriate adjustment of the width of the "window".
Depending on the station, you have to dig a little.

The stereo decoder in SDRSHARP works too. You can listen in stereo.

Next, I'll watch TV.
It is both analog and digital.

pawelr98 wrote:

Here is a curiosity.

Receiving FM stations on 80.2MHz and 76.5MHz.
Japan-Osaka



You can't move without such a tuner.

The only FM station that catches on CCIR is on 88.1MHz.
The stations fly sequentially 88.1 / 85.1 / 80.2 / 76.5
The key is AGC and the appropriate adjustment of the width of the "window".
Depending on the station, you have to dig a little.

The stereo decoder in SDRSHARP works too. You can listen in stereo.

Next, I'll watch TV.
It is both analog and digital.

What kind of antenna do you have that you caught such morsels? I think I'll go back to my SDR

Jezzman wrote:

pawelr98 wrote:

Here is a curiosity.

Receiving FM stations on 80.2MHz and 76.5MHz.
Japan-Osaka



You can't move without such a tuner.

The only FM station that catches on CCIR is on 88.1MHz.
The stations fly sequentially 88.1 / 85.1 / 80.2 / 76.5
The key is AGC and the appropriate adjustment of the width of the "window".
Depending on the station, you have to dig a little.

The stereo decoder in SDRSHARP works too. You can listen in stereo.

Next, I'll watch TV.
It is both analog and digital.

What kind of antenna do you have that you caught such morsels? I think I'll go back to my SDR

The antenna is a standard that comes with the device.
That crap antenna a few centimeters long.
From poverty, I unscrew the antenna and attach a slightly longer cable, which improves the reception (important when activating the stereo decoder).

Japan generally has strange transmission standards.
ISDB-T digital TV which is not compatible with the South American version.
Their FM range is 76-90MHz.

When traveling, such an SDR is a treasure because you can receive transmissions regardless of the standards in force in a given country.

pawelr98 wrote:

[...] When traveling, such an SDR is a treasure [...]

And we here think that you picked it up in Poland .... Better to write right away that it is not received from our territory, because everyone will be shaking the rake with the thought that the propagation has jumped and dx's will strike. :]

BOOM i ZONK wrote:

pawelr98 wrote:

[...] When traveling, such an SDR is a treasure [...]

And we here think that you picked it up in Poland .... Better to write right away that it was received from unknown terrain, because everyone will be shaking the rakes, they will make up that the propagation has jumped and dx's strike. :]

I noted in the post that the reception is in Japan in the city of Osaka.

In Japan, there are no transmitters with the power to penetrate half the globe.

The PR1 transmitter in Solec Kujawski has enough power to break through to Japan (or even to the USA), but the other way is not the case. Their transmitters on medium waves have up to several dozen kW, and the rest is general cargo that would probably not even get through to China.

On this site http://sdr.hu/?to you can receive virtually the whole world and Japanese radio stations.

Old...
I myself make my KiWiSDR available from time to time.

Hello. I'm starting to play with SDR-RTL and looking for sdr v 1.0.0.1186 for windows XP, or other running soft on XP. I have such a monument and I want to have it on it. I have not found it anywhere via google.
Thank you and best regards.

The sdr # 1173 version also works on win XP
https://www.elektroda.pl/rtvforum/topic2353101-90.html#13176010

I am planning a conversion of my RTL, it will be soldered in a laminate box so I would like to replace electrolytic capacitors with tantalum ones because they are more durable, can such a modification have any negative impact on my rtl?

Arek_v1 wrote:

I would like to replace electrolytic capacitors with tantalum ones because they are more durable, can such a modification have any negative impact on my rtl?

Just as it will be improperly performed (heated tracks, overheated elements, etc.).
In this application, the original capacitors will live a very long time.

Hello. Recently, I have become a holder of sdr under USB. I have a problem with reception, it does not even pick up the radio on 225khz. On the original antenna. I am a driver, so maybe there is some mobile antenna to make it better

Cheap RTL-SDR does not receive this bandwidth.

An upconverter is needed to transfer the signal to the bandwidth received by RTL-SDR.

ok thanks for the answer. I thought that when I receive it on an ordinary radio, I will receive something in the same way.