Cybergibbon has been working on reversing the digital protocol used by a wireless alarm system he recently acquired. He began by observing the alarm sensor’s signal using first an RF Explorer, then using RTL-SDR and SDR# to record the signal, which he analyzed with Audacity. Next, he cracked open the sensor itself to investigate the circuit, finding a TI CC1150 transmitter. From there he analyzed the SPI signal between the sensor board’s MCU and the CC1150, with the ultimate goal of developing a circuit and code to emulate the alarm sensor’s RF output.
You can find the eight steps (and counting) in this odyssey at Cybergibbons’ blog.
Via the contact form.