Видео

Great work mate

Hi, a quick question in case you can help me, do you know what the bus ID is to check the total kilometers (odometer), just to read the value, thank you

This reminds me of what 'old-school hacking' was all about - tinkering beyond typical limits to achieve something cool. I understand how these things can be used for malicious reasons, but the greatest benefit of such knowledge in my view is that it opens up a lot of opportunities to make some cool car gadgets. One of the problems that could arise if security is tightened up on automotive communications/control systems is that it could end up being a lot more difficult to have fun making custom gauges, interfaces, audio systems or perhaps even one touchscreen to rule them all. I wonder what Richard Stallman would create as far as automotive systems go...? Great video! I know this is 6 years on, but the information is still just as relevant in 2024 as it was 6-7 years ago; highlighting what you mentioned about companies not doing much about security. Hopefully they only secure the safety features and leave the rest open for tinkering :)

I like having an insecure canbus. Makes it easy to see what is going on.

thanks for sharing

how can you clone the firmware?

Where does Volvo store the expected software numbers within the can network for all the control modules attached to ms can or hs can? Got 2 used control modules, and both of them is setting u030000 incompatible software and u012200 lost communication.

Hi, what hardware are you using?

How can I know can address when transmit data package? Do you have address for other car lick kia,ford,toyota...?

don't expect car manufacturers to start integrating pieces of architecture Bosch has not yet designed. Security is always an after thought because it eats into profits 🙂

Simply do NOT attach powertrain systems to cellular. Chrysler could have released TSB calling to detach Infotainment B bus from Star Can connector. That way wireless and powertrain are isolated from scammers just wanting more security

This really isn’t hacking, it’s just reading a network and replaying packets.

Thanks

Saying the CAN bus is a problem is like saying a USB port on a server is a problem. Trying to encrypt it will not solve the issue of a compromised device giving you access to the CAN bus. It also raises other issues of your ability to control your own device. Which shouldn't you be able to access the CAN bus? So the CAN bus doesn't seem to be the problem. The problem is things which allows you to remotely gain access to it. You shouldn't be able to compromise a web browser and gain access to the CAM bus. And the segregation of the 2 separate CAN busses seems to do that well.

Bit alarmed by the use of the word attack here, like you say, with a direct connection the only level of security is the black boxness of the software in each module, establishing what each data packet does is mostly just elimination and testing time. Those speed conversion factors are often listed (due to wheel size and market and different dash configuration) within any odb tool for the car for soft coding. You slightly mentioned different can protocols but didn’t say on many vehicles with a gateway module you’ll have to pick carefully where you join the network if you want to play effectively. A more attacky thing would be how to circumvent the software to carry out custom updates without pulling the eeprom like imitating a factory tool.... yes yes I know, hide a data sniffer inside and send in your car for a software update but that’s not fun. Most half decent automotive oscilloscopes can record and decode can these days, n if you prefer doing things the fun way Arduino is totally the way to go imo. Re the radio hack you mention at the start it’s sparked my interest, I assume that somehow forces the radio to then send spoofed can signals into the network? On most cars the infotainment is on a higher baud rate than the drivetrain and comfort can networks, I’m guessing actually gateway modules are there now to block those spurious packets? Thank you for the vid!

Hi Was great video But all Hacking you mentioned can easily be done with a good diagnostic too you go to special function of the tool can do everything you mentioned

How did you handle the case with CRC used in CAN message. In case of transmitting new data(not replaying old data) with specific CAN ID, how did you manage to calculate the CRC, that is correctly received by the receiver ECU?

ABSOLUTE CRAP

Join the upcoming "Practical Automobile (Car) Penetration Testing" online course from the Digital Defense Academy. Please visit the link below for details - Pre-launch offer (40% discount) and installment based payment plans available www.digitaldefense.academy/offerpch

So, maybe giving it a negative speed/mph would reverse the odometer? hmm

Great..

I am reading your paper, and it is incredible. Tks for sharing your knowledge.

Crystal clear and we'll explained, some question only so can bus is like UDP broadcast no assurance of nodes have received the message?

Thank you. Very informative and crystal clear explanation. Just wondering which online repair data service (paid subscription) you used ? Is it ALLDATA or something else?

You show 2 design plans but I would like the plans for the one you built with material list. Do you have the plans for yours?

Hi, I'm searching for the pid list to a Game Simulator Civic Based dashboard and this is perfect to me. Thank You!!

Looking at beds so I can find one for my daughter I wish I could just build one like this! These beds are so expensive to buy but so beautiful

I'm planning to hack my car i20 to automatically door lock after reaching some speed and unlock as engine is off. So, which variant of CAN BUS shield is suitable for my project? Thanks.

This is great, have you ever looked into tachograph manipulation, ? you will love it. Long story short, In EU there is this device called a tachograph that is used by lorry drivers to record the activity, time, speed, distance traveled of the driver on a personal card. The recording is done automatically by the device. it is done so that the driver does not drive over allowed driving times and takes appropriate breaks in between, etc.. Since their invention people tried to find a way to manipulate this device for their own gain.As time moved on the tachograph and legislations improved but so do the manipulation methods. The latest manipulation method i've seen is by modifying a USB port from the truck so that 2 wires from the USB port connect to the CANbus of the truck and by connecting a USB stick ( it is a special one, i've plugged it into the computer but it is not recognised ) you disable the tachograph, so when you drive the tachograph will record that you are resting. I would love to ask you some questions and have a talk about this, i have some material to share too. feel free to email me: suvalf@gmail.com thank you

Great video very interesting

Thanks for publishing this video! It was very helpful in developing an ISO9141 to CANbus data transceiver.

If you are going to copy his work, you could at least give Eric Evenchick some credit.

Can you possibly have something like this for use car customizer. For example I love the new Land rover range rover full digital dash/gauges and would like to install into a 1990s honda or and 1985-1993 ford mustang and be able to show all the data for the engine transmission brake ect you get the point. Just a way to fully customize it to our liking and be fully compatible/working with some wiring and maybe changing or few sensors and use the outputs of stock to custom ecus( engine control unit)

Thanks for sharing that looks great 👍

Hi, what car is this on? I need to increase the milegage on my cluster to correct the mileage. I've got it hooked up the a CAN usb where I can send speed CAN frame and the speed shows up on the cluster. Is mileage increment on the same speed frame or a different frame all together?

it seems the CANtact you mentioned is abandoned project and no longer available. What else you suggest?

Hi Roderick, thank you for the nice presentation. what inexpensive hardware would you recommend to use in conjunction with Linux tools?

22:50

But can you subtract miles? 🤔

That B-CAN bus is not that also called LIN-Bus which is a 1 wire bus ?

* The FBI Wants to Know Your Location *

A very interesting and educational video on the CAN bus. But you can't compare hacking a cars CAN bus to deface a web site. A web site is accessed remotely and you accessed the CAN bus directly on the hardware. That is like accessing a computer hosting a web site directly on the hardware. This is always insecure. The problems with modern cars are remote access (Wifi or Bluetooth) through, for example, a insecure entertainment system that is directly connected to the CAN us on the vehicle. If you let the mischief's inside your vehicle, then you certainly are going to be pwned!

Very cool! Do you do any consulting on CAN related projects?

Can you tell me how to retract transmission temperature? Like canID for transmission temp

Hi Roderick, I have only just seen this 2918. Dec. Great presentation! thanks, it was very informative, going to attempt a hack on an older Mercedes SBC pump coding to the car now!

good job!

10:47 Did you break the law by altering you odometer? You did not list it as an exception to the law in your presentation.

Hello Sir, Do you know any ready made or DIY device available in market which can detect a running Engine’s RPM (via non-contact method or via Crankshaft sensor) and then via “CAN protocol output” pass-on this RPM value to any of following DC Controller (to control DC Motor’s RPM)? 1. www.nocoev.com/product/curtis/manual/1229%20(15B).pdf 2. www.nocoev.com/product/curtis/manual/1244%20(13E).pdf 3. OR Any other 200+ Amp DC Motor SPEED & TORQUE Controller (which you will recommend) Please do let me know if you have any appropriate device? Thanks!

that's such a cute bed

Do you make these? If so how much?