this is the 29c3 talk about GSM DOS and SMS sniffing . awesome work osmocom team. layer 1,2,3 now runs all on the phone :) http://youtu.be/a1iZV2nl28A
is code is online for all layer 1 2 3 ?
On Sat, Dec 29, 2012 at 8:24 AM, Vic Delorge cityhnet@gmail.com wrote:
this is the 29c3 talk about GSM DOS and SMS sniffing . awesome work osmocom team. layer 1,2,3 now runs all on the phone :) http://youtu.be/a1iZV2nl28A
Hi,
layer 1,2,3 now runs all on the phone :)
Not really ... AFAIK the L2/3 running on the phone on that demo are just minimal implementation to just do what the demo showed and be as fast as possible (since being fast was the whole point here). It's not the full mobile application.
Cheers,
Sylvain
Hi, * Vic Delorge cityhnet@gmail.com [2012-12-29 11:15]:
this is the 29c3 talk about GSM DOS and SMS sniffing .
Please check the slides of the presentation or watch the youtube recording. This is not related to sniffing at all.
awesome work osmocom team. layer 1,2,3 now runs all on the phone :)
This is not true, it is just a minimal subset of layer2 and an even more stripped down subset of layer3 messages that are required just for the attack.
Cheers Nico
dear Nico
Please share slides :)
On Sat, Dec 29, 2012 at 1:18 PM, Nico Golde osmocom@ngolde.de wrote:
Hi,
- Vic Delorge cityhnet@gmail.com [2012-12-29 11:15]:
this is the 29c3 talk about GSM DOS and SMS sniffing .
Please check the slides of the presentation or watch the youtube recording. This is not related to sniffing at all.
awesome work osmocom team. layer 1,2,3 now runs all on the phone :)
This is not true, it is just a minimal subset of layer2 and an even more stripped down subset of layer3 messages that are required just for the attack.
Cheers Nico
Hi, * Akib Sayyed akibsayyed@gmail.com [2012-12-29 11:51]:
dear Nico
Please share slides :)
http://fandango.binarybase.org/~nion/let_me_answer_that_for_you.pdf
Cheers Nico
Thanks :) nice one. I would like to stdy your code. cause I am implementing l23 mobile app on phone. currently CCCH_app is ported completely but there is some memory management issue going on.:(
lets hope it will solved in next code :) cheers
On Sat, Dec 29, 2012 at 2:07 PM, Nico Golde osmocom@ngolde.de wrote:
Hi,
- Akib Sayyed akibsayyed@gmail.com [2012-12-29 11:51]:
dear Nico
Please share slides :)
http://fandango.binarybase.org/~nion/let_me_answer_that_for_you.pdf
Cheers Nico
Hi Akib,
On Sat, Dec 29, 2012 at 03:11:46PM +0300, Akib Sayyed wrote:
nice one. I would like to stdy your code. cause I am implementing l23 mobile app on phone. currently CCCH_app is ported completely but there is some memory management issue going on.:(
are you sharing your current progress in a public git repository? If not, I'd like to strongly encourage you to do so. I can also give you commit access so you can push to a private branch on git.osmocom.org, if you prefer that.
Hey all, actually is "interesting" his web site.
Since it seems a commercial website*:
* " Matrix Shell developed own GSM penetration testing tool.This tool is comprised of hardware unit and a laptop.it can perform various test on network using custom firmware. Using this too tester can identify state in which end user is getting service in terms of security."
* "We provide following services. GSM Network Penetration Testing Matrixshell have developed a tool that can be used for testing attack vectors from users point of view. That is attacks that can be carried out by using modified handsets which may cause misusing identity of GSM subscriber , mass cellphone cell phone switch off ,denial of service of subscriber etc. Such vulnerability may cause loss in reputation of provider. We can find out such issues using our own tools. Our tools comprised of UM interface hardware and a laptop communicating with UM interface. This tool can run different tests on network like: Checking encryption type, Authentication bypass, Wrong way of TMSI assignment by network, Identity impersonating."
I am wondering how his software tools are dealing with Osmocom's licenses.
Cheers, Luca
are you sharing your current progress in a public git repository? If not, I'd like to strongly encourage you to do so. I can also give you commit access so you can push to a private branch on git.osmocom.org, if you prefer that.
--
- Harald Welte laforge@gnumonks.org http://laforge.gnumonks.org/
============================================================================ "Privacy in residential applications is a desirable marketing option." (ETSI EN 300 175-7 Ch. A6)
Currently we are in production stage. We are more focused on buying own stack or buying chipset with compatible stack as there is no gprs/edge/3g suppprt in osmocom. Our first tool was based on osmocom but we are not in production. On Jan 2, 2013 12:12 AM, "Luca Bongiorni" luca.bongiorni1@studenti.unimi.it wrote:
Hey all, actually is "interesting" his web site.
Since it seems a commercial website*:
- " Matrix Shell developed own GSM penetration testing tool.This tool is
comprised of hardware unit and a laptop.it can perform various test on network using custom firmware. Using this too tester can identify state in which end user is getting service in terms of security."
- "We provide following services.
GSM Network Penetration Testing Matrixshell have developed a tool that can be used for testing attack vectors from users point of view. That is attacks that can be carried out by using modified handsets which may cause misusing identity of GSM subscriber , mass cellphone cell phone switch off ,denial of service of subscriber etc. Such vulnerability may cause loss in reputation of provider. We can find out such issues using our own tools. Our tools comprised of UM interface hardware and a laptop communicating with UM interface. This tool can run different tests on network like: Checking encryption type, Authentication bypass, Wrong way of TMSI assignment by network, Identity impersonating."
I am wondering how his software tools are dealing with Osmocom's licenses.
Cheers, Luca
are you sharing your current progress in a public git repository? If not, I'd like to strongly encourage you to do so. I can also give you commit access so you can push to a private branch on git.osmocom.org,
if you
prefer that.
--
- Harald Welte laforge@gnumonks.org
============================================================================
"Privacy in residential applications is a desirable marketing option." (ETSI EN 300 175-7 Ch.
A6)
Damn typo mistake On Jan 2, 2013 8:35 AM, "Akib Sayyed" akibsayyed@gmail.com wrote:
Currently we are not in production stage. We are more focused on buying own stack or buying chipset with compatible
stack as there is no gprs/edge/3g suppprt in osmocom.
Our first tool was based on osmocom but we are not in production.
On Jan 2, 2013 12:12 AM, "Luca Bongiorni" <
luca.bongiorni1@studenti.unimi.it> wrote:
Hey all, actually is "interesting" his web site.
Since it seems a commercial website*:
- " Matrix Shell developed own GSM penetration testing tool.This tool is
comprised of hardware unit and a laptop.it can perform various test on network using custom firmware.
Using this too tester can identify state in which end user is getting
service in terms of security."
- "We provide following services.
GSM Network Penetration Testing Matrixshell have developed a tool that can be used for testing attack
vectors from users point of view. That is attacks that can be carried out by using modified handsets which may cause misusing identity of GSM subscriber , mass cellphone cell phone switch off ,denial of service of subscriber etc. Such vulnerability may cause loss in reputation of provider.
We can find out such issues using our own tools. Our tools comprised of
UM interface hardware and a laptop communicating with UM interface. This tool can run different tests on network like: Checking encryption type, Authentication bypass, Wrong way of TMSI assignment by network, Identity impersonating."
I am wondering how his software tools are dealing with Osmocom's
licenses.
Cheers, Luca
are you sharing your current progress in a public git repository? If not, I'd like to strongly encourage you to do so. I can also give you commit access so you can push to a private branch on git.osmocom.org,
if you
prefer that.
--
- Harald Welte laforge@gnumonks.org
============================================================================
"Privacy in residential applications is a desirable marketing option." (ETSI EN 300 175-7
Ch. A6)
baseband-devel@lists.osmocom.org
-
Akib Sayyed -
Harald Welte -
Luca Bongiorni -
Nico Golde -
Sylvain Munaut -
Vic Delorge