{"id":13844079,"url":"https://github.com/SigPloiter/GTScan","last_synced_at":"2025-07-11T21:32:54.551Z","repository":{"id":65268736,"uuid":"116613215","full_name":"SigPloiter/GTScan","owner":"SigPloiter","description":"The Nmap Scanner for Telco","archived":false,"fork":false,"pushed_at":"2018-09-26T19:25:18.000Z","size":57,"stargazers_count":145,"open_issues_count":3,"forks_count":51,"subscribers_count":14,"default_branch":"master","last_synced_at":"2024-08-05T17:40:47.780Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/SigPloiter.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2018-01-08T01:20:26.000Z","updated_at":"2024-05-25T15:13:15.000Z","dependencies_parsed_at":"2023-01-16T15:00:10.223Z","dependency_job_id":null,"html_url":"https://github.com/SigPloiter/GTScan","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SigPloiter%2FGTScan","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SigPloiter%2FGTScan/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SigPloiter%2FGTScan/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SigPloiter%2FGTScan/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/SigPloiter","download_url":"https://codeload.github.com/SigPloiter/GTScan/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":225763239,"owners_count":17520425,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-08-04T17:02:34.207Z","updated_at":"2024-11-21T16:30:30.733Z","avatar_url":"https://github.com/SigPloiter.png","language":"Python","funding_links":[],"categories":["Python (1887)","Python"],"sub_categories":[],"readme":"# GTScan\nThe Nmap Scanner for Telco. With the current focus on telecom security, there used tools in day to day IT side penetration testing should\nbe extended to telecom as well. From here came the motivation for an nmap-like scanner but for telco\n\nThe current security interconnect security controls might fail against reconnaissance , although mobile operators might implement \nSMS firewalls/proxies, Interconnect firewalls, some of those leak information that could be used for further information gathering\nprocess.\n\nThe motivation behind this project, first adding a new toolking into the arsenal of telecom penetration testers. Second give the\nmobile operators a way to test their controls to a primitive methodology such as information gathering and reconnaissance.\n\n# How does it work\nGTScan relies on using empty TCAP layers as probes to detect listening subsystem numbers (i.e application port numbers like 80 for\nhttp, 443 for https but for telecom nodes) on the respective global titles. With this way will be able to map the network\nand use the results to conduct targeted direct attacks to the respective nodes.\n\nGTScan includes Message handling: Return message on error in the SCCP layer to determine from the response what is the scanned node.\nIf a TCAP abort message is returned with an error p-abortCause: unrecognizedMessageType (0) thus the destination nodes is listening\non the SSN that was scanned, else then the scanner continues scanning on other SSNs\n\nYou can provide GTscan a range of global titles to be scanned, a comma-separated or a single GT to be scanned, along with other\nparameters\n\n# Requirements\npython3\n\npip3 install -r requirements.txt\n\nAnd of course an SS7/Sigtran access :)\n\n# Usage\n\nExample: ./GTScan.py -G 201500000000,201500000002 -g 965123456780 -c 1 -C 2 -p 2905 -P 2906 -l 192.168.56.1 -r 192.168.56.102\n\n\n\nAll contributions are mostly welcomed\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FSigPloiter%2FGTScan","html_url":"https://awesome.ecosyste.ms/projects/github.com%2FSigPloiter%2FGTScan","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FSigPloiter%2FGTScan/lists"}