Project

General

Profile

Mobile Network Assessment Tools » History » Version 17

Linus, 12/23/2013 05:24 PM

1 1 Linus
h2. Overview
2
3
This is a collection of tools for the assessment of mobile network security.
4
It includes:
5 3 Linus
6 8 Karsten
* *[[GSMmap-apk]]*
7
Android application that collects 2G and 3G network traces from Samsung Galaxy phones
8
9 3 Linus
* *[[xgoldscanner]]*
10 8 Karsten
Linux application that collects 2G and 3G network traces from Samsung Galaxy phones
11 2 Linus
12 10 Karsten
* *[[CatcherCatcher]]*
13 8 Karsten
Collect evidence of 2G fake base station activity (requires Osmocom phone)
14 1 Linus
15
16 14 Karsten
The tools are included in the *[[GSMmap-live]]* system, which auto-submits data for analysis at "GSMmap.org":https://GSMmap.org
17 13 Karsten
Also on the live system lives:
18 1 Linus
19 13 Karsten
* "*SIMtester*":https://opensource.srlabs.de/projects/simtester/wiki
20
Finds configuration bugs in SIM cards
21 1 Linus
22 14 Karsten
A public mailing list for discussions and occasional announcements is found "here":https://lists.srlabs.de/cgi-bin/mailman/listinfo/gsmmap
23 2 Linus
24 1 Linus
*****
25
26 6 Linus
27 2 Linus
28
*****
29 1 Linus
30 10 Karsten
h2. CatcherCatcher
31 2 Linus
32
33 1 Linus
34 2 Linus
*****
35 1 Linus
36
h2. GSMmap-apk
37 2 Linus
38 1 Linus
Actively collect 2G and 3G traces using Samsung Android phones.
39
40
h3. Requirements:
41
42 2 Linus
* Samsung Galaxy S2 / S3 phone
43 1 Linus
44
h3. Download:
45
46 14 Karsten
* Pre-compiled .apk TODO
47
* Source Code TODO
48 1 Linus
49 6 Linus
h3. Disclaimer
50
51 14 Karsten
The tests include an active part. First, your phone will place outgoing calls to a dedicated number. This number will always be busy and never answer in order to rule out voice charges as best as we can.
52 6 Linus
53 14 Karsten
Second, your phone will send SMS short messages via an invalid SMS-C to an invalid number.
54 2 Linus
55 14 Karsten
During our tests (in Europe) we have not encounter any network that would charge for these transactions. However, we can not rule out that you may be charged in specific settings.
56 2 Linus
57 14 Karsten
To control for involuntary charges, we strongly advise the use of a dedicated pre-paid SIM card for these tests.
58 1 Linus
59 3 Linus
h3. Instructions
60 5 Ben
61 14 Karsten
# Install application from Google Play app store TODO
62 2 Linus
# Run
63
64 1 Linus
h3. Mailing list
65 2 Linus
66 3 Linus
A public mailing list for discussions is "here":https://lists.srlabs.de/cgi-bin/mailman/listinfo/gsmmap
67
68 2 Linus
*****
69 1 Linus
70
h2. GSMmap-live
71
72 14 Karsten
This live Linux system is equipped with all the assessment tools listed above. It furthermore includes TODO
73
The live system facilitates their use and automatically uploads logs to GSMmap.org.
74 2 Linus
75 14 Karsten
h3. Requirements
76 2 Linus
77 14 Karsten
* Computer capable of running 64bit Linus
78
* For each test: Requirements listed in the respective tool wiki pages
79 6 Linus
80 14 Karsten
h3. Download
81 6 Linus
82 14 Karsten
* Live system image TODO
83 6 Linus
84 14 Karsten
85 6 Linus
h3. Disclaimer
86
87 14 Karsten
The tests include an active part. First, your phone will place outgoing calls to a dedicated number. This number will always be busy and never answer in order to rule out voice charges as best as we can.
88 6 Linus
89 14 Karsten
Second, your phone will send SMS short messages via an invalid SMS-C to an invalid number.
90 6 Linus
91 14 Karsten
During our tests (in Europe) we have not encounter any network that would charge for these transactions. However, we can not rule out that you may be charged in specific settings.
92 6 Linus
93 14 Karsten
To control for involuntary charges, we strongly advise the use of a dedicated pre-paid SIM card for these tests.
94 2 Linus
95
h3. Instructions
96
97 14 Karsten
# Download TODO
98 2 Linus
# Unpack: <pre>tar xvzf gsmmap-live.img.tar.gz</pre>
99 1 Linus
# Write to stick <pre>dd if=gsmmap-live.img of=/dev/[USB-stick] [bs=1M]</pre>
100 2 Linus
# Boot from stick
101
102 3 Linus
h3. Mailing list
103
104
A public mailing list for discussions is "here":https://lists.srlabs.de/cgi-bin/mailman/listinfo/gsmmap
105 14 Karsten
106
Please file bugs and support requests through the "issue tracker":https://opensource.srlabs.de/projects/mobile-network-assessment-tools/issues/new as they may be of little relevance to the majority of the mailing list subscribers.