Project

General

Profile

Actions
History

Mobile Network Assessment Tools » History » Revision 4

« Previous | Revision 4/32 (diff) | Next »
Linus, 12/19/2013 03:54 PM

Overview

This is a collection of tools for the assessment of mobile network security.
It includes:

  • SIMtester
    Find signature & encryption give-away bugs as well es unprotected or hidden TARs
  • xgoldscanner
    Actively collect 2G and 3G logs from Samsung Galaxy phones to your computer (Linux application)
  • GSMmap-apk
    Actively collect 2G and 3G logs using Samsung Galaxy phones (Android application)

All command-line tools are provided in the GSMmap-live system, which auto-submits data to GSMmap.org

SIMtester

Assess SIM card security in 3 dimensions:

  • Cryptanalytic attack surface
    Collect signature giveaways
    Collect encryption giveaways
  • Security level
    Detect "unprotected" TARs accepting unauthenticated commands (MSL=0)
  • Spec. compliance
    Create a comprehensive overview of all available TARs

Requirements:

  • PC/SC reader –or–
  • Osmocom phone
  • SOFTWARE JAVA? todo

Download

Pre-compiled .jar TODO
Source Code TODO
Live System TODO

Instructions

  1. Download
  2. unpack
  3. run: TODO call
    • TODO command line parameters

Mailing list

A public mailing list for announcements and discussion can be found TODO here .
Please fill bugs and support requests through the issue tracker TODO as they may be of little relevance to the majority of the mailing list subscribers.

xgoldscanner

Actively collect 2G and 3G traces using Samsung Android phones.
Log files can be analyzed with Tobias Engel's xgoldmon tool, which heavily inspired the development of xgoldscanner.

Requirements:

  • Samsung Galaxy S2 / S3 phone
  • Micro-USB cable
  • Linux Computer

Download:

  • Source Code (bash)
  • Live System

Instructions

  1. Download
  2. unpack
  3. run: 
    sudo ./xgoldscanner.sh -n [telephone number, e.g. +491234567]

    Optional parameters:
    • -g conduct GPRS test
    • -d display debug messages
    • -o offline mode [skip log upload for manual submission]
    • -3 conduct 3G tests only [skip 2G tests]
    • -y assume "yes" to questions and confirmation dialogues [for automated testing]
    • -i <n> repeat each test <n> times (default is 5)

Advanced usage

Use Tobias Engel's xgoldmon tool to analyze log files.

Mailing list

A public mailing list for announcements and discussion can be found TODO here .
Please fill bugs and support requests through the issue tracker TODO as they may be of little relevance to the majority of the mailing list subscribers.

catcher catcher

Display mobile network irregularities hinting at fake base station activity.

Requirements:

  • Osmocom phone
  • Osmocom serial cable
  • Linux Computer

Download:

  • Source Code
  • Live System

Instructions

  1. Download
  2. unpack
  3. run: TODO call
    • TODO command line parameters

Mailing list

A public mailing list for announcements and discussion can be found TODO here .
Please fill bugs and support requests through the issue tracker TODO as they may be of little relevance to the majority of the mailing list subscribers.

GSMmap-apk

Actively collect 2G and 3G traces using Samsung Android phones.

Requirements:

  • Samsung Galaxy S2 / S3 phone

Download:

  • Pre-compiled .apk
  • Source Code

Instructions

  1. Install application from App Store
  2. Run

Mailing list

A public mailing list for announcements and discussion can be found TODO here .
Please fill bugs and support requests through the issue tracker TODO as they may be of little relevance to the majority of the mailing list subscribers.

GSMmap-live

This live linux system is equipped with all the assessment tools listed above. It furthermore includes
It facilitates their use and automatically uploads logs to GSMmap.org.

Requirements:

  • 64bit-compatible Computer
  • For each test: Requirements listed above

Download:

  • Live system image
  • Source Code

Instructions

  1. Download
  2. Unpack: 
    tar xvzf gsmmap-live.img.tar.gz
  3. Write to stick 
    dd if=gsmmap-live.img of=/dev/[USB-stick] [bs=1M]
  4. Boot from stick

Mailing list

A public mailing list for announcements and discussion can be found TODO here .
Please fill bugs and support requests through the issue tracker TODO as they may be of little relevance to the majority of the mailing list subscribers.

Updated by Linus over 10 years ago · 4 revisions