Unlocking KeeLoq - A Reverse Engineering Story

Delve into the world of KeeLoq Remote Keyless Entry systems in this 59-minute conference talk from the Hack In The Box Security Conference. Explore the journey of bringing existing research together to make KeeLoq attacks practical, with the ultimate goal of repurposing a commercial receiver for home automation system integration. Learn how to recover the manufacturer key by extracting and reverse engineering receiver firmware using a JTAG adapter and Ghidra. Discover techniques for decoding and decrypting KeeLoq transmissions, verified through logic analyzer use, and how to clone captured serial and sequence numbers to a new transmitter. Gain insights into exporting received transmissions to a home automation system via an add-on WiFi-capable microcontroller. Presented by Rogan Dawes, a senior researcher at SensePost with extensive experience in hacking and web application assessment tools, this talk offers a deep dive into hardware hacking and the intricacies of KeeLoq systems.