Version 13 - History - Mobile Network Assessment Tools - Mobile Network Assessment Tools - SRLabs Open Source Projects

Mobile Network Assessment Tools » History » Version 13

Karsten, 12/23/2013 05:06 PM

-Linus
+h2. Overview
 This is a collection of tools for the assessment of mobile network security.
 It includes:
 Linus
-Karsten
+* *[[GSMmap-apk]]*
 Android application that collects 2G and 3G network traces from Samsung Galaxy phones
-Linus
+* *[[xgoldscanner]]*
-Karsten
+Linux application that collects 2G and 3G network traces from Samsung Galaxy phones
 Linus
-Karsten
+* *[[CatcherCatcher]]*
-Karsten
+Collect evidence of 2G fake base station activity (requires Osmocom phone)
 Linus
 The tools are included in the *GSMmap-live* system, which auto-submits data for analysis at "GSMmap.org":https://GSMmap.org
-Karsten
+Also on the live system lives:
 Linus
-Karsten
+* "*SIMtester*":https://opensource.srlabs.de/projects/simtester/wiki
 Finds configuration bugs in SIM cards
 Karsten
 Linus
 *****
-Linus
+h2. xgoldscanner
 Linus
-Linus
+Actively collect 2G and 3G traces using Samsung Android phones.
-Linus
+Log files can be analyzed with Tobias Engel's "xgoldmon":https://github.com/2b-as/xgoldmon tool, which heavily inspired the development of xgoldscanner.
 h3. Requirements:
 * Samsung Galaxy S2 / S3  phone
 * Micro-USB cable
 * Linux Computer
 Linus
-Linus
+h3. Download:
 Linus
 * Source Code (bash)
 * Live System
 Linus
 h3. Disclaimer
 Karsten
-Linus
+The active tests include an active part. First, your phone will place outgoing calls
 to a dedicated number. This number will always be busy and never answer in order
 to rule out voice charges as best as we can.
 Secondly, your phone will send SMS short messages via an invalid SMS-C to
 an invalid number.
 During our tests we have not found a European network that charges for these
 transactions. However, we can not rule out that you may be charged in specific
 settings.
 To control for involuntary charges, we strongly advise the use of a dedicated
 pre-paid SIM card for these tests.
 Linus
 h3. Instructions
 Linus
-Linus
+# Download
 # unpack
 # run:  <pre>sudo ./xgoldscanner.sh -n [telephone number, e.g. +491234567]</pre>
 Optional parameters:
 *  -g  conduct GPRS test
 *  -d  display debug messages
 *  -o  offline mode [skip log upload for manual submission]
 *  -3  conduct 3G tests only [skip 2G tests]
-Linus
+*  -y  assume "yes" to questions and confirmation dialogues [for automated testing]
 *  -i  <n> repeat each test <n> times (default is 5)
-Linus
+h3. Advanced usage
 Linus
-Linus
+Use Tobias Engel's "xgoldmon":https://github.com/2b-as/xgoldmon tool to analyze log files.
 h3. Mailing list
-Karsten
+A public mailing list for discussions and occasional announcements is found "here":https://lists.srlabs.de/cgi-bin/mailman/listinfo/gsmmap
 Linus
 *****
 Linus
-Karsten
+h2. CatcherCatcher
 Linus
 Display mobile network irregularities hinting at fake base station activity.
 h3. Requirements:
 * Osmocom phone
-Linus
+* Osmocom serial cable
 * Linux Computer
 h3. Download:
-Linus
+* Source Code
 * Live System
 h3. Instructions
 # Download
 # unpack
 # run: TODO call
 * TODO command line parameters
 Linus
-Linus
+h3. Mailing list
 Ben
-Karsten
+A public mailing list discussion is "here":https://lists.srlabs.de/cgi-bin/mailman/listinfo/catchercatcher
 Linus
 *****
 Linus
 h2. GSMmap-apk
 Actively collect 2G and 3G traces using Samsung Android phones.
 Linus
 h3. Requirements:
 * Samsung Galaxy S2 / S3 phone
-Linus
+h3. Download:
-Linus
+* Pre-compiled .apk
 * Source Code
 Linus
 h3. Disclaimer
 Our 3G tests include an active part. First, your phone will place outgoing calls
 to a dedicated number. This number will always be busy and never answer in order
 to rule out voice charges as best as we can.
 Secondly, your phone will send SMS short messages via an invalid SMS-C to
 an invalid number.
 During our tests we have not found a European network that charges for these
 transactions. However, we can not rule out that you may be charged in specific
 settings.
 To control for involuntary charges, we strongly advise the use of a dedicated
 pre-paid SIM card for these tests.
 Linus
 h3. Instructions
 # Install application from App Store
-Linus
+# Run
 Linus
-Linus
+h3. Mailing list
 Ben
-Karsten
+A public mailing list for discussions is "here":https://lists.srlabs.de/cgi-bin/mailman/listinfo/gsmmap
 Linus
 *****
 Linus
-Linus
+h2. GSMmap-live
 Linus
 This live linux system is equipped with all the assessment tools listed above. It furthermore includes
-Linus
+It facilitates their use and automatically uploads logs to GSMmap.org.
 Linus
 h3. Requirements:
 * 64bit-compatible Computer
 * For each test: Requirements listed above
 Linus
 h3. Download:
-Linus
+* Live system image
-Linus
+* Source Code
 h3. Disclaimer
 Our 3G tests include an active part. First, your phone will place outgoing calls
 to a dedicated number. This number will always be busy and never answer in order
 to rule out voice charges as best as we can.
 Secondly, your phone will send SMS short messages via an invalid SMS-C to
 an invalid number.
 During our tests we have not found a European network that charges for these
 transactions. However, we can not rule out that you may be charged in specific
 settings.
 To control for involuntary charges, we strongly advise the use of a dedicated
-Linus
+pre-paid SIM card for these tests.
 h3. Instructions
 # Download
-Linus
+# Unpack: <pre>tar xvzf gsmmap-live.img.tar.gz</pre>
-Linus
+# Write to stick <pre>dd if=gsmmap-live.img of=/dev/[USB-stick] [bs=1M]</pre>
 # Boot from stick
 Linus
 h3. Mailing list
-Karsten
+A public mailing list for discussions is "here":https://lists.srlabs.de/cgi-bin/mailman/listinfo/gsmmap
-Linus
+Please file bugs and support requests through the "issue tracker TODO ":http://opensource.srlabs.de/projects/a51-decrypt/issues/new as they may be of little relevance to the majority of the mailing list subscribers.

Project

General

Profile

Mobile Network Assessment Tools

Mobile Network Assessment Tools » History » Version 13