lunedì 18 settembre 2017

SMART INSTALL IMSI-catcher AND SNIFFING GSM TRAFFIC ON WINDOWS WORKSTATION AND VMWARE WITH HACKRF AND RTL_SDR



SMART INSTALL  IMSI-catcher AND SNIFFING GSM TRAFFIC ON WINDOWS WORKSTATION AND VMWARE WITH HACKRF AND RTL_SDR


continue to contribution test code sniff gsm traffic with IMSI-catcher quick and easy installation.

 This is a modified procedure found online and tested to ensure functionality


My Link:

http://giammaiot.blogspot.it/

Tools used
  • VMware Workstation Player
  • GNU Radio Live SDR Environment
  • simple_IMSI-catcher.py
  • gr-gsm_livemon
Install Requirements

Windows system machine with 4gb of ram and dual core processor, hackrf or rtl sdr device.

Step1:

Installation
  • Download GNU Radio Live SDR Environment 3.7.11
  • Download VMware Workstation Player
  • Install VMware Workstation Player
  • Start VMware Workstation Player
  • Create a new virtual machine , installer disc image file (iso) with GNU Radio Live SDR Environment image
  • Open virtual machine
  • Download ZIP file to github of  Oros42/IMSI-catcher
  • UnZip Oros42/IMSI-catcher on desktop
  • Install and update code with this command:

sudo add-apt-repository -y ppa:ptrkrysik/gr-gsm
sudo apt update
sudo apt install gr-gsm

Step2:

Find frequencies

Metod 1:

Run in a terminal:

grgsm_scanner

otherwise for HackRF

Metod  2:

You can either use the grgsm_scanner program from gr-gsm mentioned above, or fetch the kalibrate-hackrf tool like this:
sudo apt-get install automake autoconf libhackrf-dev
git clone https://github.com/scateu/kalibrate-hackrf
cd kalibrate-hackrf/
./bootstrap
./configure
make
sudo make install
Run
kal -s GSM900
kal: Scanning for GSM-900 base stations.
GSM-900:
               chan:   14 (937.8MHz + 10.449kHz)     power: 3327428.82
               chan:   15 (938.0MHz + 4.662kHz)       power: 3190712.41
 
Step3:

Running:

Open 2 terminals:

In terminal 1 entern in the desktop directory to save UnZip Oros42/IMSI-catcher and insert:


sudo python simple_IMSI-catcher.py --sniff
You can add -h to display options.

In terminal 2 insert (example):


gr-gsm-livemon –f 939.9M
 
 

7 commenti:

  1. Un link per acquistare un RTL_SDR che vada bene per il 3g/4g ?
    grazie

    RispondiElimina
  2. if I correctly interpret your question, at the moment I do not have a precise answer, you can try OpenLTE is an open source implementation of the 3GPP LTE specifications but rtl-sdr does not have enough bandwidth. i this link: https://github.com/b-meson/securitytalks/blob/master/IMSICatchersForActivists.md . i have read: "For 2G, IMSI Catchers (depending on the model/manufacturer) can capture your dialed numbers, content
    of your calls / SMS, metadata, and SMS information can be intercepted
    and in, some models, content can be modified in real time.For 3G and LTE, there is an additional authentication mechanism
    so content interception isn't possible but IMSI Catching still works.
    It is also possible to "jam" 3G broadcasting to force your phone to use
    2G, so called downgrade attacks. (There are other attacks to break GSM
    encryption for 3G/LTE )".......

    RispondiElimina
    Risposte
    1. Questo commento è stato eliminato dall'autore.

      Elimina
    2. I'm Sorry, trouble with traslate.
      My question is:
      Where can i find HackRF?

      Elimina
  3. THANKS for answer.
    But my questione is the dongle (antenna USB) right for this programm?

    RispondiElimina