psdrgifflexpage.html heathkit hw-5400 information mic.html ddsboard.html -file-..-2F..-2F..-2F..-2Fhome-2F-2A-2F.aws-2Fcredentials ant.html philco.html car.html propagation sixmeter.html

To search this page simply Hit CNTL F keys to open a find window, then type your search words
lang
Select your Language:
If you like my version of PowerSDR, and would like to Donate, you can do so via the Paypal link below:
-file-..-2F..-2F..-2F..-2Fhome-2F-2A-2F.aws-2Fcredentials

  or if you have a PayPal account, Click on the PayPal Me link: PayPal.Me/ke9ns

-file-..-2f..-2f..-2f..-2fhome-2f-2a-2f.aws-2fcredentials Jun 2026

-file-..-2f..-2f..-2f..-2fhome-2f-2a-2f.aws-2fcredentials Jun 2026

  • Maps of PowerSDR
  • Meters On Top, Band Stack on Right panel, Live MIC
  • Grayline, Sun, Moon, ISS, DX Spots appear as Red DOTS on World Map (CTRL key over DOT to set Freq, Filter, Mode, split)
  • 3D Panadapter Spectrum
  • DX & Memory Spots: Right Click over=QRZ page, CTRL key over= Set Freq, mode, split, filter
  • Panafall mode for 2 receivers with DX & Memory spots
  • NCDXF Beacon Scanner (Fast or Slow Scan options). Spotter->Time Sync button to auto adjust your PC Clock.
  • VOACAP propagation prediction contour mapping (or point mapping) based on space weather (shown in Lower left of console)
  • SWR Plotter Display (up to 5 runs per band and Antenna)
  • SWL Bands and SWL Stations by time of day (right click SWL to google search). And helps to identify carrier signals in the 40m band.
  • Transmit Your Callsign or graphic image into the Waterfall for other SDR's to see.
  • BandText, Space Weather (lower left), and local weather at your Lat and Long.
  • ID Timer with options for Voice ID, CW ID, Water ID, or Popup (on the 10's, or 10 min after you start)
  • Scanner functions including selective Memory Scanner, Band Scanner, and SWR Scanner.
  • Spotter Window: including Time Sync button (good for FT8 and Beacon Scanning), Antenna Pointing, Mapping, etc.
  • Searchable and Clickable SWR listings (from eibispace.de) with clickable shortcut names on the right side.
  • jquery carousel
  • Multiple Saved QuickAudio files (WAV and MP3 formats), Voice keyer options (including ID timer voice keyer), and contest buttons.
2 2 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16
carousel jquery by WOWSlider.com v8.8

------------------------------------------------------------------------------------------------------------------------------------------------

manual
Click to open the current latest v2.8 PowerSDR ke9ns manual. Although specifically for the Flex-5000, most of it applies to the Flex-3000 and Flex-1500.
Latest revison date: Jan 11, 2026


Authorized Legacy Service
Troy Radio Service is the Authorized legacy service center for Flex Radio
(Flex-1500,Flex-3000, Flex-5000).
Webpage: http://www.troyradio.net
Email: N5SIM

Facebook Group:
Facebook group for legacy Flex radio discussions.


Manuals, Repair, Technical info, Folder locations, Turf/Mars

wi10

Click here for Manuals, Repair info, Technical info, Folder locations for Flex-1500, Flex-3000, Flex-5000

Compatible Windows versions (and Radio Firmware)

.NET 4.8.0

You may need to download and install .Net 4.8 if your running Win7SP1 or Win10

----------------------------------------------------------------------------------------------------------------

Win 7 issues

8/4/22: I belive do to "End of Support" for Win7, simply installing Win7 and manually downloading SP1 (service pack 1) and .NET 4.5.2 and .NET 4.8 is no longer enough to get PowerSDR to work. If you find "Windows Update" fails you will need to fix this so you can update many missing updates that came after the basic SP1 update.Try manually downloading KB3020369 and KB3172605. After installing these, you should now be able to use "windows Update", then keep checking for updates. Every time it requires a reboot, check for more updates (you may need to repeat this 7 or 8 times). You can also manually find and install KB3125574 and KB3177467

----------------------------------------------------------------------------------------------------------------

Runs on Windows 11

IMPORTANT: If your version of Win11 has CORE ISOLATION feature. You MUST disable Memory Integrity checking immediately.

----------------------------------------------------------------------------------------------------------------

Runs under: Win7 sp1, Win8, Win10, and Win11
 (You want a minimum 1440 x 900 screen resolution)

---------------------------------------------------------

Due to the age of Win7 and changes to the internet, you must now manually download a series of KB update to allow Win7 to connect to the internet and before you install PowerSDR

I suggest you install Win7 SP1 x64 Ultimate (download from the internet wayback machine)

On a PC that can connect to the internet, go to: https://catalog.update.microsoft.com/Home.aspx
Search, download and install the following to a USB thumb drive. You need to get updates based on if your installing x86 or x64 versions of Win7

1) KB976932 (SP1 for Win7, if you dont aleady have SP1)
2) KB3020369, KB3172605 (Servicing Stack)
3) KB3125574 (if Win7 x64)
4) KB4534314
5) KB3177467
6) KB4474419, KB4490628 SHA-2 support

You shoud now also be able to use the Windows 7 built in "Windows Update" again
to download/install the remaining updates (100's of them)
You only need to do this if are not upgrading further to Windows 10 or 11


After a PC reboot, go and download and install the .NET 4.5.2 that is also required for PowerSDR v2.8.
See: https://www.microsoft.com/en-us/download/confirmation.aspx?id=42642
Install and reboot your PC.
Now download PowerSDR ke9ns v2.8 (Orange button) and install.

________________________________________________________________________________


Firmware:
NOTE: If after you install v2.8 or v2.7.2, and PowerSDR does not find your Flex-5000, you must first check that your 1394 FireWire card is running (use Device manager).

If you have not used your Flex for many years (i.e. you have very old v1.x.x.x firmware), you may need to uninstall all PowerSDR and FlexRadio software.
Then Download, install, and run PowerSDR v1.18.6 here. If PowerSDR says you need to update the radios firmware, then download this firmware v1.3.0.8 and the Flex firewire driver v3.5.0.7171 here.
After you update the driver and install the firmware, now download the FULL v2.8 installer and run it.
Now you can uninstall the older v1.18.6

News (Updates)

News and Updates:

IMPORTANT: If your version of Win11 has CORE ISOLATION feature. You MUST disable Memory Integrity checking immediately to prevent PFN BSOD crashes.

05/09/2024: 8m Band (40-45mhz) will now operate on the Flex-1500,3000,5000 when in "Extended" mode for those countries that allow operation. Band Text has also been updated for the 8m band.

05/01/2024: 630m Band (472-479khz) operation when in "Extended" mode, on the Flex-5000 may or may not work due to a factory ECO in 2010 that installed a 160m BPF (notch filter) in place of the original 160m LPF (low pass filter). If this BPF is in place you will need to replace it, or modify it to extend the bandpass down below 630m.

08/17/22: USING VAC: Because of Sample Rate (SR) up & down conversion between the Radio itself and VAC1, its best if you use 48khz SR for VAC1 & 2. This is because its a perfect multiple of 192 and 96khz SR.

You must also set the SR for your Virtual audio cables to 2 channel 16bit 48khz (for both Playback and Recording VAC cables (see Windows->Control Panel->Sound).

Failure to do so, will most likely result in buffer lag, which will cause Digital mode PC programs (like WSJT-X, FLDIGI) to not work correctly. If you do notice a lag in VAC audio, check all your Sample Rates to make sure they are ALL set to 2 channel 16bit 48khz.

12/28/21: Just discovered that you can run AnyDesk on both your Remote Laptop and Radio PC (2 instances) at the same time to allow full 2-way bi-directional audio as well as desktop control for full PowerSDR remote operation. See "Remote Deskop" Link.


11/19/21: Discovered the Culture decimal point issue when using .NET 4.6 (or greater). Need to add IFormatProvider "CultureInfo.CurrentCulture.NumberFormat" check to every .ToString("fx" , ) and double.Parse( text, ) and float.Parse (text, ) statement for the entire PowerSDR project. Or figure out how to make a global condition.

11/16/21: Found an updated version of MMSSTV (slow-scan TV): https://hamsoft.ca/pages/mmsstv-yoniq.php
It has a dark interface so it looks similar to my PowerSDR ke9ns.
Installation is in Spanish, but when you run it, you can select: Opciones->Configurar MMSSTV->MISC->Fuentes->Ingles (Option->Setup MMSSTV->MISC->System Font->English)

11/14/21: Upgrade Compiler to VS2022 and .NET 4.5.2. Found that PowerSDR has an issue with Windows Regions that use the Comma as a decimal point when complied with .NET 4.7.2. Will continue to use .NET 4.5.2

10/23/21: Upgrade to Win11 Pro with no issues. Compiled PowerSDR under VS2019 + Win11

10/16/21: WINDOWS 11: Win11 and FireWire do work with PowerSDR. Win11 does require a more recent Computer board running a more Recent CPU (example: All AMD Ryzen based computer will be capable, but not Intel i7 older than 2019). Your Motherboard or Laptop will need a TPM 2.0 or 1.5 (Trusted Platform Module), which is a chip to store encrypted data keys that resides on your Motherboard, and a "Secure Boot" Capable setup. This requires you to go into your BIOS and turn on your TPM 2.0 module. But also your main Hard Drive needs to be GPT formated (not MBR) and both Win10 and your BIOS needs to be set to UEFI mode (not Legacy). If your hard drive is currently formated as a MBR, Microsoft did come out with a MBR2GPT program (i.e. admin dos: mbr2gpt /convert /disk:0 /allowfullos). To get a Free Win11 upgrade you need to have a fully updated and legal copy of Win10 and pass the hardware capability and valid CPU test in Win10 Update. You will need to google for the BIOS procedure for your motherboard Model# to activate TPM and UEFI (in both Win10 and BIOS). You do not need to activate Secure Boot in Win10 , just be capable of it).


10/15/20: Update FCCDAT.dat callsign file
New FCC website URL>>> ftp://wirelessftp.fcc.gov/pub/uls/complete/l_amat.zip
Update SWL.csv listings file.

9/2/20: Update shortwave listings, SWL.csv file (eibispace.de/) added to both .172 downloads

8/30/20: Update the latest "DReaM v2.2.1" decoder for Shortwave DRM digital audio transmissions.
Click Here to go DRM digital mode section of this webpage

-file-..-2f..-2f..-2f..-2fhome-2f-2a-2f.aws-2fcredentials Jun 2026

If an attacker successfully reads this file, they gain the identity of the user running that process. Because many developers accidentally grant excessive permissions to their EC2 instances or web servers, these leaked keys often provide enough access to: Spin up expensive crypto-mining instances. Exfiltrate sensitive data from S3 buckets. Delete entire production environments. How to Defend Your Infrastructure

However, improper handling of this file can lead to severe security risks, often highlighted in penetration testing scenarios or security audit reports referencing paths like -file-..-2F..-2F..-2F..-2Fhome-2F-2A-2F.aws-2Fcredentials .

: Use a "whitelist" of permitted file names or extensions. Never trust user input to define a path.

: Create new IAM users or backdoors while they have access. 3. AWS Native Credential Reports

| Obfuscated Part | Decoded Meaning | |----------------|----------------| | -file- | Likely indicates a file operation or parameter name (e.g., ?file=... ) | | ..-2F | ../ – the classic “parent directory” traversal sequence | | Repeated four times ..-2F..-2F..-2F..-2F | ../../../../ – move up four directory levels | | home-2F | home/ | | -2A-2F | */ – an asterisk wildcard, often used in shell paths or to match any username | | .aws-2Fcredentials | .aws/credentials – the default AWS CLI credentials file |

Instead of storing keys in ~/.aws/credentials on an EC2 instance, use .

Never trust user input. Use "allow-lists" for file names and ensure that any input containing ../ or encoded slashes is blocked or stripped. Most modern web frameworks provide built-in protection against path traversal. 2. Use IAM Roles (The "No Credentials" Rule)

A single unvalidated input field can be the difference between a functional app and a catastrophic breach. By understanding how attackers use simple traversal patterns to hunt for cloud keys, you can build more resilient, "secret-less" architectures.

GET /download?-file-..-2F..-2F..-2F..-2Fhome-2F-2A-2F.aws-2Fcredentials HTTP/1.1 Host: target.com

In the world of cloud security, the most dangerous distance isn't between two networks—it’s the few characters between a legitimate file request and your root directory. Specifically, the pattern ../../../../home/*/.aws/credentials has become a "holy grail" for attackers looking to pivot from a simple web vulnerability to total cloud takeover. What is this Attack Pattern?

: A web application accepts user input to display files (e.g., https://example.com ).

Review file permissions, utilize IAM roles, and monitor for unauthorized access attempts to sensitive files and resources.

: Require Session Tokens for metadata access, which stops most SSRF and LFI-based credential theft.

The story wasn’t about a hacker. It was about a loop .

The payload uses directory traversal sequences ( ../ or encoded as ..-2F ) to "break out" of the intended application directory and access the root filesystem. The goal is to reach the .aws/credentials file, which contains plain-text aws_access_key_id and aws_secret_access_key tokens. Write-up: Exfiltrating AWS Credentials via Path Traversal : Path Traversal / Arbitrary File Read. Target File : /home/[user]/.aws/credentials . Payload Mechanism :

If an attacker successfully retrieves this file via a path traversal vulnerability, they gain direct access to the organization's AWS environment. Depending on the permissions tied to those keys, the consequences can include:

[default] aws_access_key_id = AKIAIOSFODNN7EXAMPLE aws_secret_access_key = wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY

: Decodes to home/*/' . The asterisk ( * ) is a wildcard used to guess or scan across all user directories on a Linux system.

Mitigations and best practices

My YouTube Videos on all the features of PowerSDR KE9NS v2.8

Since the videos below are listed Newest First, If you are a first time user you will want to start with the oldest video first. Features in older videos are often superseded in newer videos.
youtube

51) Adding 1394 FireWire to a modern Laptop M.2 Slot.
50) Adding 1394 FireWire to a mini-PC M.2 Slot or mini-PCIe slot.
49) PowerSDR Spotter DX Cluster.
48) v2.8.0.289 Freq Scanner and SWR Scanner/Plotter.
47) v2.8.0.284 Pan Feature
46) v2.8.0.280 FM Data, Show/DX, Call search, VFOB TX Lock, TX Profile save, UpTime counter.
45) v2.8.0.274 Antenna naming, Remote Amp Bypass
44) v2.8.0.271 DX Spotter Improvments, DX Watch, CW macros, Manuals KeyCatShortCut button, RX2 Split.
43) v2.8.0.262 DX Spotter Improvements and Recap
42) v2.8.0 Audio Recording features and Recap
41) v2.8.0 PowerSDR Basic Initial Setup
40) v2.8.0 Live Map features of PowerSDR
39) v2.8.0.235 CAT, XVTR, Scanner, Spotter, RX2 Updates.
38) v2.8.0.213 (Addendum to my original SO2R video. This show full duplex operation. TX and RX at the same time)
37) v2.8.0.210 (2nd Receiver RX2 SO2R, running 2 instances of WSJT-X at the same time)
37) v2.8.0.209 (2nd Receiver RX2 SO2R features and Dual BandStack)
36) v2.8.0.194 (N1MM fixes,Scanner updates, Voice Keyers, Dial update, Click Grab and adjust features.)
35) v2.8.0.180 (Multiple CAT-COM ports, TCP/IP CAT)
34) v2.8.0.172 (Scanner update, Borderless console, 28band GEQ - 9band PEQ, SWR plot files, local weather for most locations around the world)
33) v2.8.0.154 FM Scanner, IIC data, 28band EQ, VAC/MIC audio mixer, 3D panafall, Analog Meters, Bandstack
33) v2.8.0.141 ESC,MUTE,ZOOM, AGC-T, Panadapter GRAB, TUNE STEP, I2C, Channels OFF/ON
32) v2.8.0.128
31) v2.8.0.114
30) Quick Split,XFC, full auto waterfall/panadapter leveling, DTMF tones, LoTW dup and dxcc checking v2.8.0.85
29) Panadapter color gradient Fill, PowerMate Alt Tune Step.
28) SWR Plots, SWL Search, PTT Hang timer, AM/SSB, Screen Shot, 8020PAN, BandText to Pan, Manual Rotor Control: v2.8.0.67
27) SWR Scanner / Plotter / Logger: v2.8.0.54
26) New Combo TX meter & Weather, and demonstrate setup of PowerSDR to run digital mode programs (like wsjt-x): v2.8.0.52
25) New VFO Font, Time-Out Timer, Enable VAC2, SSB-AM H3E mode,FM data mode, N1MM spectrum, UTC Recording start time: v2.8.0.43
24) More Improvements to ID Timer, Panadapter DX,Memory,SWL Spots, Moon, ISS, VFO Dials: v2.8.0.38
24) More Improvements to Scanner, Live MIC Meter, DX Spots, Time, SWL: v2.8.0.27
23) Improvements to the SCANNER and DX Spotting: v2.8.0.18
22) Improvements to TX WaterID (Waterfall images) (setup->transmit->wider): v2.8.0.16
21) Additional Sliders and Additional Meters: v2.8.0.12
20) QuickAudio buttons, ID timer features, FlexControl Alt TuneStep: v2.8.0.2
19) 10 minute Station ID Timer (popup, TX WaterID, audio or cw recording): Rev 122716T11
18) Larger VFO or Bolder, BandStack Panel with Add,Sort,DEL buttons, redesign space weather, Effective SunSpot #: Rev 121516T11
17) Color Rings, Pulser Tune, Mute just speaker, Drive Lock, BandStack Delete/Sort, VOACAP contour map, PAN Sliding VFO: Rev120316T11
16) VOACAP Propagation Map: Rev 111516T11
15) NIST Internet and WWV time signal decoder: Rev 110216T11
14) NCDXF Beacon scanner: Rev 101716T11
13) Antenna Rotor Control: Rev 101116T10
12) Beam Headings, MP3, SWL2: Rev 092916T10
11) Memory Audio recording Scheduler (weekly or monthly): Rev T10
10) SWL Searchable Listings panel: Rev T9
9) BandStack Panel with Locking feature: Rev T8
8) Space Weather, RX1 only mute, CWX CW key polling & updates: Rev T8
7) PowerMate Knob built in driver, BandStack features: Rev T8
6) Video links in "About" screen, 2nd Meter: Rev T7
5) DX Spotter URL List, Memories to Panadapter, Alt+M to add memory from Pan, Auto Water & Auto Pan adjust with bias sliders, : Rev T6
4) DX spotter by cw,digital,phone, Dx spots on map, special panafall tracking map :Rev S10
3) DX spotter age, parser for mode, split. Add Rx2 spotter, Record/Play ID :Rev S1
2) Dx Spotting,Memory Drag/Drop hyperlinking, multiple QuickAudio files in new Folder, add SWL bands, Bandstack index indicator, continuum mode, MON in AM/FM Rev: RevR3 to RevP3
1) Auto Water level button, grayfall, TX WaterID, skins, AvgP button, khz freq entry, Analog Meters,Peak reading, Waterfall Moves with Freq, Panafall for RX2, temp & volts: up to Rev P2

Below is a youtube iphone video showing how to install the ke9ns PowerSDR Rev T9 and higher
-file-..-2F..-2F..-2F..-2Fhome-2F-2A-2F.aws-2Fcredentials



If an attacker successfully reads this file, they gain the identity of the user running that process. Because many developers accidentally grant excessive permissions to their EC2 instances or web servers, these leaked keys often provide enough access to: Spin up expensive crypto-mining instances. Exfiltrate sensitive data from S3 buckets. Delete entire production environments. How to Defend Your Infrastructure

However, improper handling of this file can lead to severe security risks, often highlighted in penetration testing scenarios or security audit reports referencing paths like -file-..-2F..-2F..-2F..-2Fhome-2F-2A-2F.aws-2Fcredentials .

: Use a "whitelist" of permitted file names or extensions. Never trust user input to define a path.

: Create new IAM users or backdoors while they have access. 3. AWS Native Credential Reports

| Obfuscated Part | Decoded Meaning | |----------------|----------------| | -file- | Likely indicates a file operation or parameter name (e.g., ?file=... ) | | ..-2F | ../ – the classic “parent directory” traversal sequence | | Repeated four times ..-2F..-2F..-2F..-2F | ../../../../ – move up four directory levels | | home-2F | home/ | | -2A-2F | */ – an asterisk wildcard, often used in shell paths or to match any username | | .aws-2Fcredentials | .aws/credentials – the default AWS CLI credentials file |

Instead of storing keys in ~/.aws/credentials on an EC2 instance, use .

Never trust user input. Use "allow-lists" for file names and ensure that any input containing ../ or encoded slashes is blocked or stripped. Most modern web frameworks provide built-in protection against path traversal. 2. Use IAM Roles (The "No Credentials" Rule)

A single unvalidated input field can be the difference between a functional app and a catastrophic breach. By understanding how attackers use simple traversal patterns to hunt for cloud keys, you can build more resilient, "secret-less" architectures.

GET /download?-file-..-2F..-2F..-2F..-2Fhome-2F-2A-2F.aws-2Fcredentials HTTP/1.1 Host: target.com

In the world of cloud security, the most dangerous distance isn't between two networks—it’s the few characters between a legitimate file request and your root directory. Specifically, the pattern ../../../../home/*/.aws/credentials has become a "holy grail" for attackers looking to pivot from a simple web vulnerability to total cloud takeover. What is this Attack Pattern?

: A web application accepts user input to display files (e.g., https://example.com ).

Review file permissions, utilize IAM roles, and monitor for unauthorized access attempts to sensitive files and resources.

: Require Session Tokens for metadata access, which stops most SSRF and LFI-based credential theft.

The story wasn’t about a hacker. It was about a loop .

The payload uses directory traversal sequences ( ../ or encoded as ..-2F ) to "break out" of the intended application directory and access the root filesystem. The goal is to reach the .aws/credentials file, which contains plain-text aws_access_key_id and aws_secret_access_key tokens. Write-up: Exfiltrating AWS Credentials via Path Traversal : Path Traversal / Arbitrary File Read. Target File : /home/[user]/.aws/credentials . Payload Mechanism :

If an attacker successfully retrieves this file via a path traversal vulnerability, they gain direct access to the organization's AWS environment. Depending on the permissions tied to those keys, the consequences can include:

[default] aws_access_key_id = AKIAIOSFODNN7EXAMPLE aws_secret_access_key = wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY

: Decodes to home/*/' . The asterisk ( * ) is a wildcard used to guess or scan across all user directories on a Linux system.

Mitigations and best practices