Flipper Zero CAN Hack Your Car!! CAN Bus Hacking With Flipper Zero!
Ғылым және технология
Last week, community member and security researcher Matthew KuKanich made an absolutely amazing presentation on how he, in collaboration with Rabbit Labs created the CAN Comander that allows the Flipper Zero to connect directly to a car's CAN Bus system! Once the Flipper can access the car's onboard computer, it can do just about anything!
Want to make your own project? PCBWay can help! They can work with you every step of the way, from PCB design, printing and assembly, as well as 3D printing, CNC and more!! Check them out at www.pcbway.com/
@MatthewKuKanich's Presentation : • Car Hacking & CAN Bus ...
@MatthewKuKanich's GitHub : github.com/MatthewKuKanich
-----------------------------------
Check Out The Official Squachtopia Hangout Discord Server!:
/ discord
-----------------------------------
Support the Channel at my Patreon!!
www.patreon.com/user?u=29290751
-----------------------------------
Save 40% off at CodeCrafters! : app.codecrafters.io/join?via=...
-----------------------------------
Follow me on Social Media!
TikTok : / talkingsasquach
Instagram : / talking_sasquach
-----------------------------------
Email the@talkingsasquach.com for Partnership/Sponsorship Inquiries
Пікірлер: 135
🎯 Key points for quick navigation: 00:00 *🛡️ Introduction and Disclaimer* - The video is for educational purposes only; testing on hardware not owned is illegal, - Introduction to the topic of auto hacking and the misinformation about Flipper Zero's capabilities. 00:28 *🔑 Understanding Flipper Zero and Car Hacking* - Flipper Zero can read car keys and fobs but has security limitations, - Possibility of hacking with additional engineering and technical knowledge. 01:32 *🚗 Introduction to CAN Bus* - Explanation of CAN Bus as a robust two-wire system for car data transmission, - Importance of CAN Bus in connecting sensors and devices to the car’s computer. 03:38 *🔧 Interfacing with CAN Bus* - Tools needed to interface with CAN Bus like MCP2515 and Arduino Nano, - Introduction to PCB and sponsor PCB Way. 05:00 *📡 Accessing CAN Bus and Database Container Files* - Multiple ways to access CAN Bus including ODB2 port and lights, - Explanation of DBC files as translators for commands and their availability. 06:04 *🛠️ Practical Applications of CAN Bus Hacking* - Use of homemade CAN Bus interface to read car data and create custom displays, - Examples of interfacing with infotainment systems and digital displays. 07:03 *🖥️ CAN Commander and Flipper Zero* - Introduction of CAN Commander to interface Flipper Zero with CAN Bus, - Capabilities of CAN Commander including GPS, Wi-Fi, and reading key fob signals. 08:11 *📶 Advanced Features of CAN Commander* - Using CAN Commander for denial-of-service attacks and man-in-the-middle attacks, - Explanation of prioritized packets and potential for disabling vehicles. 09:49 *🔄 Real-World Implications and Security Concerns* - Potential for manipulating vehicle data for insurance or monitoring systems, - Examples of existing hacks and the importance of security research. 11:28 *🛡️ Security Research and Preventative Measures* - Efforts by researchers like Matthew to develop countermeasures against CAN Bus attacks, - Tips for vehicle owners to protect against hacking and the inevitability of such risks. 12:10 *📢 Conclusion and Call to Action* - Summary of the video and encouragement to watch the full presentation by Matthew, - Request for likes, comments, and subscriptions to support the channel. Made with HARPA AI
Thank you so much for bringing this to such a wide audience! I hope everyone enjoys :)
@TalkingSasquach
Ай бұрын
I appreciate you and now it'll be even easier for people to find your full presentation!
@DaReaLBiGGMaN
Ай бұрын
I watched the presentation the day after release. Awesome job, Matt! Where can I pick up a can commander?
@MatthewKuKanich
Ай бұрын
@@DaReaLBiGGMaN Thank you! It will be sold on rabbitlabs. We will be dropping it in a week as of our last estimates. We are testing and upgrading :)
@otra_geminiana
Ай бұрын
wow, I had the pleasure of being at both live conferences and I must say that they were impressive, not only were very interesting topics that were difficult to find in other videos and presentations covered in detail, it was also fun and complemented by a ruthless chat, lol 😂
@AWOK
Ай бұрын
Great work. Always nice to see people creating new and interesting things. 🍻
Dear Canada, this still doesn't make the Flipper a car hacking device. The Flipper plays a trivial role and could literally be replaced with anything that has buttons and a screen.
@TalkingSasquach
Ай бұрын
Agreed.
@aceman1126
Ай бұрын
Your comment has been flagged for wrongthink by the ministry of truth. You have been assigned to reeducation camp number 634 and transportation officers will be at your location shortly. Do not attempt to leave.
@Mister.BreadBoard
29 күн бұрын
Omg that was a flipper video?? 😂😂 I was only focus on the can commander 😂
@honestlocksmith5428
24 күн бұрын
But it can be used to steal cars. Very easily.
@skatterpro
2 күн бұрын
@@honestlocksmith5428 So can a brick
Good introduction to CAN BUS. Loved it.
Watched Matt's presentation live. Was amazing. SQUATCH LOVE ALL YOUR VIDEOS. please keep up the great work!
@TalkingSasquach
Ай бұрын
I couldn't watch it live, that's kind of why I wanted to make a boiled down version for anyone who couldn't make it or didn't know the presentation existed!
@neilBradley-vp6wh
Ай бұрын
@@TalkingSasquach yeah he definitely put it in the work on the whole thing as do you with all your videos and also you got me hooked with rabbit labs.their awesome. Thanks for promoting them.and like I said keep up what your doing it's inspiring!
keep up the amazing work dude!!!
With the can bus, almost everything can theoretically be hacked, even elevators
@BlueeBubble
Ай бұрын
Can you explain this please? I'm interested
@user-cl1mr8ox9k
29 күн бұрын
Elevators might even be easier than a car. I bet if you get into the maintenance panel or electric box then the CANBus wires are right there.
@ligmaballs2816
2 күн бұрын
@@gshockhodinky do you think it could be possible with a m5stickc plus2
rabbit labs is just amazing love everything they do. their boards are such high quality that you would think it was machined
@rgergigergeergergegergeg
28 күн бұрын
it is...
Awesome video like always!! :D
All this is why I as a locksmith now have to crawl up in dashboards and floorboards and physically spike into Chrysler star connectors just to program a damn key 😂
@69boobee
Ай бұрын
you’re welcome for the job security. lol
@user-cl1mr8ox9k
29 күн бұрын
I was just wondering about that. Don't they have a list of key fob codes and info on what codes are used for what? Like for re-programming key fobs? I would think that the manufacturer would have that or something because locksmiths do for regular keys so they know exactly what key they need to make for someone who loses their key...
@aceman1126
29 күн бұрын
@@user-cl1mr8ox9k well, it all depends on the manufacturers but generally most car keys fall into 2 main categories. Bladed keys, and standalone prox fobs. The bladed keys generally have a transponder chip that needs to be programmed to the car in order for the car to start. Even if you have a physical key that turns in the ignition, if the car doesn't recognize that individual chip the car won't start. To program those it's usually as simple as hooking a special computer to the obd2 port and follow the on screen directions. Occasionally, you will be asked for a PIN code that acts as a password to program the key. Most of the time our computer will bypass it or read the PIN from the cars computer. Rarely we have to get it from the dealerships we have friendly relationships. The push to start keys are similar in that they must be programmed to work and usually it's the same, hook the computer to the obd2 port and follow directions. Manufacturers often keep key codes and pin codes but rarely give them out to anyone but the cars registered owner. Which is little help when we can just make a key on-site fairly easily without a code and program them without needing the pin as well. Again, there's always exceptions and occasionally we can get our friends at dealerships to help with pins. The problem nowadays is that ever since the WIRED magazine news b4oke about hacking a jeep, Chrysler decided to cockblock the obd2 poet from having the ability to communicate with the car's computer. Now, we have to find a certain junction of the wiring harness and physically spike into that to do our programming. It's a bitch and a half and that junction is of course in different places on different models of cars. Furthermore, manufacturers are taking to doing third party authentication and right now it's totally pay to play or some new cars we just can't do at all right now. All that has means it's more expensive to get keys and honestly if it were up to the manufacturers we probably wouldn't be allowed to do car keys at all. Thankfully there are hardworking hackers and locksmiths that find a way 😂
@mikecdyer
22 күн бұрын
It is not the only car with a gateway by any means.
As a former Mazda tech , with the OEM OBD2 tools we can do almost anything , change info on display like he did , we can also change things like wiper swipe time , dome light times outs , change instrument cluster values like rpm limits and speed limiting change indicator flasher timing
@TalkingSasquach
29 күн бұрын
The main goal of the CAN Commander was to make the multi-thousand dollar scanner tools a tiny bit more accessible to the more tech savvy at-home mechanics.
Good research and preparation!
Another dope video! Thanks again 🔥👽🛸
Great video I always wondered about CAN BUS hacking, probably will watch that presentation you linked :p
great video!! can't wait to hopefully put this to the test at CHV!
@TalkingSasquach
Ай бұрын
Yah definitely!
Great work
I worked for a company in a past life as a reverse engineer and we were able to defeat the rolling code issue and was able to make oem style keys that worked just as OEM we even started selling to OEM dealer ships. We even got the prox stuff working also on just about all males and models of cars.
Hey I just wanted to let you know that I always enjoy your videos. You put so much information in a short time and it always gets me excited about programming and trying to reverse engineer the next technology that otherwise seems impossible. The can bus mod is genius! I have been curious about if there is a list for different key fob codes that show all the different signals and what order they are in. Like something a locksmith or the manufacturer might have for re-programming a key fob. Then someone could just program the flipper as a key fob for a wireless key unlock/start. Wireless keys still trip me out even with the security features because I know when it comes to programming, where there is a will, there is a way! As demonstrated in this video! Keep up the good work man. Thanks!
What I learned in this video, the possibilities are endless! 😊😁
@TalkingSasquach
Ай бұрын
That's basically a code word in this video lol
@PhilieBlunt666
Ай бұрын
@@TalkingSasquach i can dig it 😁
I'd be super cool to use the flipper zero as a remote to get one of those badass lawn mowers that looks like an army tank but is a wireless lawnmower and mower the lawn from a chair sitting down or a sofa on your couch.
Cool video. I need to be getting me these boards as they could open up diagnostics for me as I’m having some electronics issues. You can hack into rolling code but it’s an impossible scenario. You have to jam the frequency, wait for the person to use their key fob which is being jammed. At the same time you have to be close enough to read the key fob to get the current unused rolling code. Then when they leave you unjam the frequency and replay the signal you captured and it’ll open. If you can do this then you’re defo James Bond or Ethan Hunt 😂
Nice ❤💯👌
im getting mine tmr i cant wait
The term 'bus' in computer architecture refers to a communication system that transfers data between components inside a computer, or between computers. It's not an acronym, but rather a general term that encompasses the hardware (wires, optical fiber, etc.) and software (communication protocols) involved in this data transfer. The Wikipedia article on 'Bus (computing)' provides a good overview of the different types of buses used in computer systems, such as the address bus, memory bus, and expansion buses. It's a useful resource for understanding this fundamental concept in computer architecture.
Thanks for the video. 🤫😎I think an entire side business could be made for “content filtering” of acceleration, hard braking and speed. Disabling smart reporting and wiping telematics logs before getting repairs might have potential, too
Revometer! Lol, stick to computers! 😂
@MeGaLilCe5ar
23 күн бұрын
It’s fun to learn words you never heard before son 🤣
Sometimes the OBD2 PLUG HAS TO HAVE A CERTAIN CHIP IN IT for certain models
I seen your a bike mechanic, are you in Canada? I used to ride for cove bikes in north Vancouver and stayed over there for a bit. Awesome bunch of guys, and amazing mechanics
ooouuu new can of worms opened
Where do I purchase the CAN controller?
Could you please make a video on how to install plugins on the Pwnagotchi?. That would be amazing!. Great video btw! ❤
OBD* On Board Diagnostics
Where can I get this can commander ? I don’t see it on rabbit labs site
@MatthewKuKanich
Ай бұрын
It's not out yet but soon. We are upgrading a couple components and doing quality assurance testing. Expect it in about a week :)
How about a payload in the TPMS system? Cheers mate 👍
@devineleven514
26 күн бұрын
On github, there's some already
How do I put ai on my flipper zero is that even possible to put chat gpt 3 on it?
Not first this time, for once I had something going on.
Next project give the Washing machine some upgrades, its can bus too
@michaelzborovan4362
Ай бұрын
THOUSANDS of machines.....
@jrcharneycom
Ай бұрын
Fascinating! Like regular washing machines or the ones at the laundromat?
THE BEST THING TO USE WOULD BE A VCX NANO FOR obd2
It's always the same old line, "We're just revealing vulnerabilities so they can be fixed". If that were the case, you'd quietly tell the companies involved and keep the info on the down-low until the problem was fixed. But these people always share this information publicly. Who benefits?? The end user isn't going to be able to fix any problems. You're just telling them they're screwed. But for the thieves, it's like the New York Times! "Let me teach you how to be better criminals!". Unless you just want to watch the world burn, what's the motivation? Is it the Hacker Myth? I know people like to romanticize the "hacker" as somebody who "fights the system". But in all of the real-world examples, it's almost always exploiting and messing with innocent people for theft and general mallace. Just once I'd love to see a real world example of something good, like UFO files or erasing some credit card company's database. Instead we get Playstation hacks that mess up people's video game time or these new wireless car jackers. It's always petty stuff that makes the world a little worse.
Do you still sell marauders?
Esp8266 stuck sasquach showing this error during from web flashing ( Failed to initialize. Try resetting your device or holding the BOOT button while clicking INSTALL. )
@AmazonGrow-rm5sc
17 күн бұрын
There is only one button of mine Esp8266 i click on it yet its not working .
CAN COmmander!
Revometer 😂 💀 Tachometer would be proper but im gonna start using revometer from now on. Love the content
❤❤❤❤❤
I know a bunch about CAN "bust" and OEM have the option to use crypto CAN, they just don't...
Do airplanes also have a "CAN BUS"?
I don't think bro knows what he is saying when he says "reverse engineer the code" lol
@TheTubejunky
Ай бұрын
Reading it copying it editing it...
@kauht
Ай бұрын
@@TheTubejunky ???
No way😮
@TalkingSasquach
Ай бұрын
Yes way!!!
yippeee
@TalkingSasquach
Ай бұрын
indeed!!!
OBD, not ODB
@TalkingSasquach
29 күн бұрын
Sorry, I grew up the the Wu Tang, it's a hard habit to break!
@hawaiihiker6285
29 күн бұрын
@@TalkingSasquach that ain’t nothing to mess with
Talking SUSquach
im so confused this is soo crazzyyy
Explore the wonderful world of canvis? Hell naw, I'm done with school
Not even the Batmobile is safe from a direct MITM attack.
the europe 200 samples are more good for car`s... unlock and reset.
“Revometer” and tachometer… bro you mean speedometer
@Mister.BreadBoard
29 күн бұрын
Sasquatch lingo 😂
@MeGaLilCe5ar
23 күн бұрын
Dude scared of words 🤣
this is very old hack - for example kzread.info/dash/bejne/ZZ6n1sN7lbvNcdY.html adding the flipper zero has no benefits
I am the 209th person to like this vid :)
hillo
Theft Simulator on Nintendo Switch shows a garage is not good enough.
U think i can turn my AC on
@TalkingSasquach
29 күн бұрын
Almost definitely
Last :D
@TalkingSasquach
Ай бұрын
Still something!
Too much work for the usual tweeker or junkie. They will go for the lowest fruit. Kia or hondas. Maybe a filed key for a volkswagen. People freaking out about these flippers dont realize you have to do allllll of this work to even get a car. Its faster to hotwire or just flatbed it. If they want your car, regardless, they will get it if they can and have a chance. The professionals have other things that will put the flipper to bed. 😅 Dont ask me how i know. Early 2000s was a wild time.
1st
@TalkingSasquach
Ай бұрын
So close!!
@urbezzubka
Ай бұрын
@@TalkingSasquach 😭
Hack these roll down windows
Wait a minute Why are we talking about cannabis here? and What dos cannabis have anything to do with Car Hacking. Unless you are smoking it while driving. 🙂 🙂 🙂 🙂
So why use the flipper in the first case? There are way better CAN bus tools out out there. If you are able to hook up to the CAN bus a laptop is way more convenient as you already gained entry. Getting access to the Can bus thru a tail light doesn't make sense as there are other destructive methods to illegally getinside the vehicle that are far more easier and i am not talking about a hamer to destroy a window. Seeing at a local body work shop how easy it is to access some cars i wonder why you would lock those in the first place😮
@MatthewKuKanich
Ай бұрын
The ability to scan subghz and gps adds a new set of unique features. It's also small, handheld, and easy to use. Of course a PC works but the ease of use of the can commander is unparalleled
@69boobee
Ай бұрын
it would be so cool to buy a flipper and accessories.. do your home and hours of research… just to do the boring stuff your authorized, car brand,, service center can probably do.
Why didn't he just use an ELM327 BLUETOOTH DONGLE?
@MatthewKuKanich
Ай бұрын
Because that can only request diagnostic PIDs. It has no access to the raw can data. It can't be used to inject packets, or hack your car, or do anything actually useful beyond diagnostics.
62nd
@TalkingSasquach
Ай бұрын
still good standing!
Fck it jailbreak the Tesla
@MeGaLilCe5ar
23 күн бұрын
Now we talking business
😂 it is nothing man! Common! 😂 if I dismantle my car and connect a computer we can do the same Sh!¥.. You are getting a big piece of cake from flipper? Lol
@TalkingSasquach
Ай бұрын
I can't even get them to ship me a free flipper
@MatthewKuKanich
Ай бұрын
I'd like to see you do it lol
@michaelzborovan4362
Ай бұрын
Ok so your good then, you don't want or need one.. so don't get one...🤷 It's an educational tool, it's not gonna be sold on the snap on truck for $15,000. It's just another awesome tool added to the flipper for people to learn about a new technologies or skillset, it's about knowledge not fixing your car. You know this already...
Why i am pinned?
@miguelneves6118
Ай бұрын
Bro thinks he's pinned