Mobile Network Assessment Tools » History » Version 2
Linus, 12/19/2013 03:10 PM
| 1 | 1 | Linus | h2. Overview |
|---|---|---|---|
| 2 | |||
| 3 | This is a collection of tools for the assessment of mobile network security. |
||
| 4 | It includes: |
||
| 5 | 2 | Linus | * *SIMtester* |
| 6 | Find signature & encryption give-away bugs as well es unprotected or hidden TARs |
||
| 7 | * *xgoldscanner:* |
||
| 8 | Actively collect 2G and 3G data with Samsung Galaxy phones |
||
| 9 | * *cell-logger:* |
||
| 10 | Passively capture 2G data using osmocom phones |
||
| 11 | * *catcher catcher:* |
||
| 12 | Detect fake 2G base stations |
||
| 13 | * *GSMmap-apk:* |
||
| 14 | An Android app to test 2G and 3G networks using Samsung Galaxy phones |
||
| 15 | 1 | Linus | |
| 16 | All command-line tools are provided in the *GSMmap-live* system, which auto-submits data to https://GSMmap.org |
||
| 17 | |||
| 18 | 2 | Linus | ***** |
| 19 | |||
| 20 | 1 | Linus | h2. SIMtester |
| 21 | |||
| 22 | 2 | Linus | Assess SIM card security in 3 dimensions: |
| 23 | |||
| 24 | * *Cryptanalytic attack surface* |
||
| 25 | Collect signature giveaways |
||
| 26 | Collect encryption giveaways |
||
| 27 | * *Security level* |
||
| 28 | Detect "unprotected" TARs accepting unauthenticated commands (MSL=0) |
||
| 29 | * *Spec. compliance* |
||
| 30 | Create a comprehensive overview of all available TARs |
||
| 31 | |||
| 32 | h3. Requirements: |
||
| 33 | |||
| 34 | * PC/SC reader –or– |
||
| 35 | * Osmocom phone |
||
| 36 | * SOFTWARE JAVA? todo |
||
| 37 | |||
| 38 | h3. Download |
||
| 39 | |||
| 40 | * Pre-compiled .jar |
||
| 41 | * Source Code |
||
| 42 | * Live System |
||
| 43 | |||
| 44 | h3. Instructions |
||
| 45 | |||
| 46 | # Download |
||
| 47 | # unpack |
||
| 48 | # run: TODO call |
||
| 49 | * TODO command line parameters |
||
| 50 | |||
| 51 | ***** |
||
| 52 | |||
| 53 | 1 | Linus | h2. xgoldscanner |
| 54 | |||
| 55 | 2 | Linus | Actively collect 2G and 3G traces using Samsung Android phones. |
| 56 | |||
| 57 | h3. Requirements: |
||
| 58 | |||
| 59 | * Samsung Galaxy S2 / S3 phone |
||
| 60 | * Micro-USB cable |
||
| 61 | * Linux Computer |
||
| 62 | |||
| 63 | h3. Download: |
||
| 64 | |||
| 65 | * Source Code (bash) |
||
| 66 | * Live System |
||
| 67 | |||
| 68 | h3. Instructions |
||
| 69 | |||
| 70 | # Download |
||
| 71 | # unpack |
||
| 72 | # run: TODO call |
||
| 73 | * TODO command line parameters |
||
| 74 | |||
| 75 | h3. Advanced usage |
||
| 76 | |||
| 77 | Use Tobias Engel's xgoldmon tool to analyze log files. |
||
| 78 | https://github.com/2b-as/xgoldmon |
||
| 79 | |||
| 80 | ***** |
||
| 81 | |||
| 82 | 1 | Linus | h2. catcher catcher |
| 83 | |||
| 84 | 2 | Linus | Display mobile network irregularities hinting at fake base station activity. |
| 85 | |||
| 86 | h3. Requirements: |
||
| 87 | |||
| 88 | * Osmocom phone |
||
| 89 | * Osmocom serial cable |
||
| 90 | * Linux Computer |
||
| 91 | |||
| 92 | h3. Download: |
||
| 93 | |||
| 94 | * Source Code |
||
| 95 | * Live System |
||
| 96 | |||
| 97 | h3. Instructions |
||
| 98 | |||
| 99 | # Download |
||
| 100 | # unpack |
||
| 101 | # run: TODO call |
||
| 102 | * TODO command line parameters |
||
| 103 | |||
| 104 | ***** |
||
| 105 | |||
| 106 | 1 | Linus | h2. GSMmap-apk |
| 107 | |||
| 108 | 2 | Linus | Actively collect 2G and 3G traces using Samsung Android phones. |
| 109 | |||
| 110 | h3. Requirements: |
||
| 111 | |||
| 112 | * Samsung Galaxy S2 / S3 phone |
||
| 113 | |||
| 114 | h3. Download: |
||
| 115 | |||
| 116 | * Pre-compiled .apk |
||
| 117 | * Source Code |
||
| 118 | |||
| 119 | h3. Instructions |
||
| 120 | |||
| 121 | # Install application from App Store |
||
| 122 | # Run |
||
| 123 | |||
| 124 | ***** |
||
| 125 | |||
| 126 | 1 | Linus | h2. GSMmap-live |
| 127 | 2 | Linus | |
| 128 | This live linux system is equipped with all the assessment tools listed below. |
||
| 129 | It facilitates their use and automatically uploads logs to GSMmap.org |
||
| 130 | |||
| 131 | h3. Requirements: |
||
| 132 | |||
| 133 | * 64bit-compatible Computer |
||
| 134 | * For each test: Requirements listed above |
||
| 135 | |||
| 136 | h3. Download: |
||
| 137 | |||
| 138 | * Live system image |
||
| 139 | * Source Code |
||
| 140 | |||
| 141 | h3. Instructions |
||
| 142 | |||
| 143 | # Download |
||
| 144 | # Unpack: <pre>tar xvzf gsmmap-live.img.tar.gz</pre> |
||
| 145 | # Write to stick <pre>dd if=gsmmap-live.img of=/dev/[USB-stick] [bs=1M]</pre> |
||
| 146 | # Boot from stick |