Can I sniff packets from a LED remote using 2.4GHz RF using promiscuous mode? \ stacker news ~tech

Can I sniff packets from a LED remote using 2.4GHz RF using promiscuous mode?

829 sats \ 9 comments \ @ek 16 Oct 2023 tech

A while ago, I wanted to reverse engineer the remote for my LED strip.

I asked about it on a Discord server of my university and that's actually how I got to know the university CTF group since one of their members replied to me.

I don't remember the exact answer but he said it should be possible. I also should be able to find exact technical documentation for my remote online since they probably just used commodity hardware. In any case, something like a HackRF One will definitely work but that costs 300+€. So kind of overkill for my use case, lol

So far, I haven't been able to. I thought if something uses 2.4GHz which is the same frequency of WLAN, it should show up in Wireshark? Or at least get captured by my network card?

Now that I am writing this, the reason why it's not working is maybe because those aren't IP packets? Can network cards only capture IP packets? I was hoping it would capture literally anything that is transmitted over air on this frequency, lol.

Furthermore, I was also hoping I can emulate the remote control using a regular wireless networking card. Maybe that was too naive.

Maybe someone can enlighten me here? :)

25,000 sats bounty

ek's bounties

view all past bounties

296 sats \ 2 replies \ @ruS7Y 16 Oct 2023

A remote most likely uses Infrared (300-400 THz) band

0 sats \ 1 reply \ @ek OP 16 Oct 2023

No, it's not IR, it's 2.4 GHz. Good idea though. I explicitly didn't buy a LED strip with an IR remote since IR needs direct line of sight afaik. And I struggled with IR remotes enough in my life already.

Forgot to include pictures of the package, will do in a few minutes

0 sats \ 0 replies \ @ek OP 17 Oct 2023

"in a few minutes"

211 sats \ 5 replies \ @amaluenda 16 Oct 2023

Wireshark, in its typical usage, is designed for capturing and analyzing network packets, primarily those used in Wi-Fi (which is indeed on the 2.4GHz frequency). However, it's essential to understand that not all 2.4GHz signals are Wi-Fi signals. In your case, the remote control might use a different communication protocol that Wireshark may not directly capture.

0 sats \ 4 replies \ @ek OP 16 Oct 2023

But would my network card still capture it?

388 sats \ 3 replies \ @amaluenda 16 Oct 2023

Network cards are designed to capture and process data that adheres to network protocols, such as Wi-Fi or Ethernet. They are not equipped to capture arbitrary RF signals.

0 sats \ 1 reply \ @ek OP 17 Oct 2023

going to pay you the bounty after I verified this :)

Or another question: what would you suggest I do to reverse engineer the remote control? And do I have to buy something specific which I can attach to my machine to send the same signals as the remote but now by pressing keys on my keyboard?

0 sats \ 0 replies \ @amaluenda 17 Oct 2023

Might be difficult and tedious to reverse engineer a remote control as it involves understanding the communication protocol it uses and capturing or analyzing the signals it sends. Start by searching for technical documentation for your specific remote control or LED strip. Manufacturers often use standard communication protocols, and documentation might provide valuable insights.

Even if you can capture the signals sent by the remote control, you still need help to analyze these signals. Then you'll need to decode them and this involves identifying the modulation scheme, pulse length, and other parameters. If you want to send the same signals yourself by emulating the remote control, you may need to use a device capable of transmitting at the same frequency.

I hope you can all figure these out. Good luck!

0 sats \ 0 replies \ @ek OP 16 Oct 2023