Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
Awesome-Cellular-Hacking
Awesome-Cellular-Hacking
https://github.com/W00t3k/Awesome-Cellular-Hacking
Last synced: 5 days ago
JSON representation
-
Rogue BTS & CDMA/GSM Traffic Impersonation and Interception
- How To Build Your Own Rogue GSM BTS For Fun and Profit
- How to create an Evil LTE Twin/LTE Rogue BTS
- Practical attacks against GSM networks: Impersonation
- Tutorial-Analyzing GSM with-Airprobe and Wireshark - SDR software defined radio can be used to analyze cellular phone GSM signals, using Linux based tools GR-GSM (or Airprobe) and Wireshark. This tutorial shows how to set up these tools for use with the RTL-SDR."
- Traffic Interception for Penetration Testing Engagements - exhaustively we commonly see:"
- OpenBTS software - defined radio to present a standard 3GPP air interface to user devices, while simultaneously presenting those devices as SIP endpoints to the Internet
- YateBTS
- BladRF and YateBTS Configuration
-
[JAMMING SPECIFC ATTACKS](https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-187.pdf)
-
Equipment used in "Over The Air Baseband Exploit: Gaining Remote Code Execution on 5G Smartphones"
-
CERT/Media Alerts
-
5G Cellular Attacks
-
5G Cellular Attacks (Soon to be updated)
- New Vulnerabilities in 5G Networks
- New Privacy Threat on 3G, 4G, and Upcoming 5G AKA Protocols
- European 5G Security in the Wild: Reality versus Expectations
- Threat modeling framework for mobile communication system
- Privacy Attacks to the 4G and 5G Cellular Paging Protocols Using Side Channel Information
- Side Channel Analysis in 4G and 5G Cellular Networks
-
4G/LTE Cellular Attacks
- LTRACK: Stealthy Tracking of Mobile Phones in LTE
- Detecting Fake 4G Base Stations In Real Time
- BaseSAFE: Baseband SAnitized Fuzzing through Emulation
- Paging Storm Attacks against 4G/LTE Networks from Regional Android Botnets: Rationale, Practicality, and Implications
- This is Your President Speaking:Spoofing Alerts in 4G LTE Networks
- Hacking Public Warning System in LTE Mobile Networks
- RF Exploitation: IoT/OT Hacking with SDR
- Forcing a targeted LTE Cellphone Into an Eavesdropping Network
- Hacking Cellular Networks
- Bye-Bye-IMSI-Catchers
- White-Stingray: Evaluating IMSI Catchers Detection Applications
- LTE/LTE-A Jamming, Spoofing, and Sniffing - Assessment and Mitigation
- Using OpenBTS - "Experimental_Security_Assessment_of_BMW_Cars by KeenLab"
- Guide to LTE Security
- Small Tweaks do Not Help: Differential Power Analysis of MILENAGE Implementations in 3G/4G USIM Cards
- 4G Access Level Security Assessment
- LTE security and protocol exploits
- LTE Recon - (Defcon 23)
- LTE Pwnage: Hacking HLR/HSS and MME CoreNetwork Elements
- Modmobjam - Jam tomorrow, jam yesterday, but also jam today
- WiFi IMSI Catcher
- Demystifying the Mobile Network by Chuck McAuley
- NSA PLAYSET GSM
- Baseband Attacks: Remote Exploitation of Memory Corruptions in Cellular Protocol Stack
- Hiding in Plain Signal:Physical Signal Overshadowing Attack on LTE
- LTE Security Disabled—Misconfiguration in Commercial Network
- Shupeng-All-The-4G-Modules-Could-Be-Hacked
- Forcing a targeted LTE Cellphone Into an Eavesdropping Network
- NSA PLAYSET GSM
- LTE Security – How Good Is It?
-
SIM Specific Attacks
-
SS7/Telecom Specific
-
Resources
-
Misc
-
[Recent SeaGlass IMSI-Catcher News](https://seaglass.cs.washington.edu/) - Organizing -
Categories
4G/LTE Cellular Attacks
30
Rogue BTS & CDMA/GSM Traffic Impersonation and Interception
8
5G Cellular Attacks (Soon to be updated)
6
[JAMMING SPECIFC ATTACKS](https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-187.pdf)
5
Equipment used in "Over The Air Baseband Exploit: Gaining Remote Code Execution on 5G Smartphones"
4
Resources
3
5G Cellular Attacks
2
SIM Specific Attacks
2
Misc
2
SS7/Telecom Specific
1
[Recent SeaGlass IMSI-Catcher News](https://seaglass.cs.washington.edu/) - Organizing -
1
CERT/Media Alerts
1
Sub Categories