TechWatch Forums

Welcome to the TechWatch Forums

Skip to content

Cracking GSM networks...

Information about security hardware (firewalls, IPS, etc), as well as general networking information.
Post a reply

Cracking GSM networks...

New postby stmok on 29 Jul 2010, 01:20

The following is for INFORMATIONAL PURPOSES only. No one on this website is responsible for YOUR actions!
You get caught doing illegal things, you CANNOT blame anyone but yourself.

...I suppose it has a few uses:
* Planning to stalk your ex-girlfriend/boyfriend? :)
* Or maybe you're suspicious of your spouse's activities? :D

You need a relatively powerful Linux-based PC with an open source tool called "Kraken".

The cracking approach is via rainbow tables...
=> http://en.wikipedia.org/wiki/Rainbow_table

GSM networks use A5/1 cipher for voice privacy...
=> http://en.wikipedia.org/wiki/A5/1



News articles, blogs, official bits that talk about it...

Hackers to get eavesdropping lessons on cell calls
=> http://uk.reuters.com/article/idUKTRE66Q6NS20100727

Release the Kraken: Open source GSM cracking tool released.
=> http://hackaday.com/2010/07/22/release- ... -released/

[A51] The call of Kraken
=> http://lists.lists.reflextor.com/piperm ... 00683.html

Prerequisites:

* Linux machine, multicore min 3GB RAM

* 1.7 - 2TB of HD partitions without filsystem ( ex Samsung spinpoint
F3s, with 4k aligned start of partition )

* The Berlin A5/1 Rainbow table set

* GPU support will be added for ATI Radeon HD


Currently it will only load up all tables, and crack TDMA burst 998 for the challenge data. This takes 1.5 minutes on a 4 core Phenom II using only CPU power, and the output should look like:

Cracking
001101110011000000001000001100011000100110110110011011010011110001101010100100101111111010111100000110101001101011

Found de6bb5e60617f95c @ 12

Found 6fb7905579e28bfc @ 23


A more interactive UI with appropriate data formats (representations) will be added for easy interfacing with airprobe. Optional GPU support will also be added for faster cracking time.


> Just one question: From where do one download Kraken?

It's in the SVN in tinkering/Kraken


Thanks to GPGPUs (Nvidia CUDA and ATI's Stream) cracking via brute force can be made in shorter time! :D


Another project...

AirProbe
=> https://svn.berlin.ccc.de/projects/airprobe/

The prime motivation is to learn the details of the technology, help people who develop other open GSM technology (like OpenBTS, OpenMoko?, BS11/OpenBSC and others) and demonstrate the insecurity of the current standard.


If you're a complete beginner...

A beginners howto
https://svn.berlin.ccc.de/projects/airprobe/wiki/A
The most important thing the hacker community does is write better code. Our deeds are the best propaganda we have. Most of us, most of the time, shouldn't be distracted by worrying about beating Microsoft's PR or countering their political moves, because writing good code is in the long run a far more potent weapon than flackery. -Eric S. Raymond
stmok
Forum Guru
 
Posts: 5598
Joined: 19 Mar 2001, 15:26
Location: Sydney, Australia
Top
Post a reply

Return to Networking & Security

Who is online

Users browsing this forum: No registered users and 1 guest

Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group
cron