SnoopSnitch

h1. SnoopSnitch

SnoopSnitch is an Android app that collects and analyzes mobile radio data to make you aware of your mobile network security and to warn you about threats like fake base stations (IMSI catchers), user tracking and over-the-air updates. With SnoopSnitch you can use the data collected in the GSM Security Map at gsmmap.org and contribute your own data to GSM Map.

!{width: 10%;}sc_dashboard.png!  !{width: 10%;}sc_map_overview.png! !{width: 10%;}sc_catcher_hour.png! !{width: 10%;}sc_map_details.png!

This application currently only works on Android phones with a Qualcomm chipset and a stock Android ROM (or a suitable custom ROM with Qualcomm DIAG driver). It requires root priviliges to capture mobile network data.

h3. Documentation

For details on SnoopSnitch please refer to the [[FAQ]].

Learn about SnoopSnitch's [[IMSI Catcher Score| IMSI catcher metric]].

See which [[Android application permissions]] are required to run SnoopSnitch.

h3. Requirements:

* Qualcomm-based Android phone (see [[DeviceList|device list]])

* *Stock* Android ROM, version 4.1 or later

Note: Custom Android ROMs like CyanogenMod may or may not work, depending on the availability of a Qualcomm DIAG kernel driver (DIAG_CHAR).

* *Root privileges* on phone

h3. Incompatible Devices:

The following devices have been found to be incompatible and can *not* be used with SnoopSnitch:

* *Unsupported.* Devices with custom ROM such as CyanogenMod which lacks the Qualcomm DIAG kernel driver (DIAG_CHAR)

* *Unsupported.* Every device without Qualcomm chipset

* *Unsupported.* Samsung Galaxy S2 & S3

* *Unsupported.* Nexus 5 with stock Android

* *Unsupported.* Huawei Ascend Y300

h3. Download:

* "Pre-compiled .apk":https://opensource.srlabs.de/attachments/download/136/SnoopSnitch-1.0.3.apk (SHA1: 221444eb1c63498bf045b5504d729023def51396)

* "Pre-compiled .apk from Google Play Store":https://play.google.com/store/apps/details?id=de.srlabs.snoopsnitch

* "Pre-compiled .apk from F-Droid":https://f-droid.org/repository/browse/?fdid=de.srlabs.snoopsnitch

* Source Code: <pre>git clone --recursive https://opensource.srlabs.de/git/snoopsnitch.git</pre>

SnoopSnitch is released under the GPL v3 license (cf. source:COPYING). The app is known to built under Linux and OS X, see source:README for build instructions.

h3. Disclaimer

The tests include an active part. First, your phone will place outgoing calls to a dedicated number. This number will always be busy and never answer in order to rule out voice charges as best as we can.

Second, your phone will send SMS short messages to an invalid number. In some cases, we saw operators charging for these kind of transactions transactions. Hence, please have an eye on your phone bill when performing active tests using SnoopSnitch. To control for involuntary charges, we strongly advise the use of a dedicated pre-paid SIM card for these tests.

Furthermore, our call server will call your phone and send test SMS during the active test. To avoid unnecessary costs on our side, *DO NOT PICK UP OR REJECT AUTOMATIC CALLS FROM OUR SERVER*. If you pick up a call or have a mailbox or auto-answer feature configured that picks up the call automatically you may get blacklisted and cannot use our service anymore. Please see our [[Banned]] wiki page for details.

h3. Instructions

# Make sure you have rooted the phone

# Install application from "Google Play app store":https://play.google.com/store/apps/details?id=de.srlabs.snoopsnitch or below

# Run the app, execute active tests, upload security events and suspicious activity

h3. Mailing list

A public mailing list for discussions is "here":https://lists.srlabs.de/cgi-bin/mailman/listinfo/gsmmap

For specific questions to the snoopsnitch-team that do not require or permit public discussion, please contact us directly at *snoopsnitch [you know what to put here] srlabs.de*

h3. Version history

Version 1.0.3

* Improved error handling

Version 1.0.2

* Improved compatibility with newer Android versions and devices

* Configurable notifications

Version 1.0.1

* Android 5 and 6 support

* Improved reliability of active test

* Better support for LG phones

Version 1.0.0

* Wireshark/pcap export

* Improved IMSI catcher metric

* Lower battery impact

* Autonomous upload option

* Daily measurement option

Version 0.9.8

* Improved catcher detection

* Reduced memory consumption

* 4G data collection and basic analysis

* Various enhancements and bug fixes 

Version 0.9.7

* Improve detection of type 1 catchers and silent calls

* Reduce false positive rate

* Upload anonymized metadata additionally to radio traces

* Various enhancements and bug fixes

Version 0.9.5

* Make detection run automatically on boot

* Support LTE active tests

* Improve detection of 2G/3G catchers

* Detect empty WAP pushes

Version 0.9.4

* Improve type 1 catcher and silent SMS detection

* Implement network info screen

* Detect malfunctioning baseband interface

* Various enhancements and bug fixes

Version 0.9.3

* Support Android 5

* Fix initialization issue on newer devices

* Translation to German and Dutch

Version 0.9.2

* Fixed app lock-up issues

* Improved device compatibility check

* Handled unsupported LTE gracefully

Version 0.9.1

* Fix problem where SnoopSnitch would leave the phone muted after a test

* Remove issue with disappearing (Skype) dialing dialogs

* Resolved performance issue in analysis

Version 0.9.0

* Initial public release

h1. Training Material

As a primer to the snoopsnitch detection approach, we have prepared a set of hands-on "training material":https://opensource.srlabs.de/attachments/download/114/snoopsnitch_training_material.zip.

It contains network traces of IMSI catcher attacks and silent SMS and an analysis guide.