Giter VIP home page Giter VIP logo

sigploit-ss7's Introduction

List of Contributors

  • Rosalia D'Alessandro, Telecom Italia

SiGploit

SiGploit a signaling security testing framework dedicated to Telecom Security professionals and reasearchers to pentest and exploit vulnerabilites in the signaling protocols used in mobile operators regardless of the geneartion being in use. SiGploit aims to cover all used protocols used in the operators interconnects SS7, GTP (3G), Diameter (4G) or even SIP for IMS and VoLTE infrastructures used in the access layer and SS7 message encapsulation into SIP-T. Recommendations for each vulnerability will be provided to guide the tester and the operator the steps that should be done to enhance their security posture

SiGploit is developed on several versions

Note: In order to test SS7 attacks, you need to have an SS7 access or you can test in the virtual lab with the provided server sides of the attacks, the used values are provided.

Version 1: SS7

SiGploit will initially start with SS7 vulnerabilities providing the messages used to test the below attacking scenarios A- Location Tracking B- Call and SMS Interception C- Fraud

Version 2: GTP

This Version will focus on the data roaming attacks that occur on the IPX/GRX interconnects.

Version 3: Diameter

This Version will focus on the attacks occurring on the LTE roaming interconnects using Diameter as the signaling protocol.

Version 4: SIP

This is Version will be concerned with SIP as the signaling protocol used in the access layer for voice over LTE(VoLTE) and IMS infrastructure. Also, SIP will be used to encapsulate SS7 messages (ISUP) to be relayed over VoIP providers to SS7 networks taking advantage of SIP-T protocol, a protocol extension for SIP to provide intercompatability between VoIP and SS7 networks

Version 5: Reporting

This last Version will introduce the reporting feature. A comprehensive report with the tests done along with the recommendations provided for each vulnerability that has been exploited.

BETA Version of SiGploit will have the Location Tracking attacks of the SS7 phase 1

Installation and requirements

The requirements for this project are:

1) Python 2.7
2) Java version 1.7 +
3) Linux machine (Windows doesnt support SCTP)

To run use

cd SigPloit

python sigploit.py

sigploit-ss7's People

Stargazers

avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar

Watchers

avatar avatar avatar avatar avatar avatar avatar

Forkers

shubhamk06 md50x crackerboy chrisjcox79 cmd-ng mustis-tyr smrachi hassony14 mybrainisrewired unknown-3rror eurekax696 muzaffar000 olivervn lllaaa2 5l1v3r1 ceo2siat ovidsec cadeath sean0027 cr0dix666 hellgatecorp 123ysys hackrose1 toxicenvelope learning-lte chomikmarkus andycradle frontend1999 dedkamaroz laudarch jondesion toe4626 sleepthegod mercadowispmexico kebbek aminepa8 grechaby crackwei faridfazayeli alkenoizer ajgaht shakthivels300 opensesamedoors hamamaq atomaiden1 belmy errorlevelz cisfran05 lennon-mawele hamedlotfaly jsgaming1402 honda42456 mhamzarajput ypn007 p4pdb pdtech23 zaq2989 wad45 xzork11 shnoppel berlay55555 anonimo501 octag0no player99122 weeshlow straykat914 uvvirus cvlabsio rajivraj imaxwel mecasual19 sempf essoya kalikex1 delson704557 eoweka noname1007

sigploit-ss7's Issues

Set Client PC

What i been write in "Set Client PC"
I use Kali Linux (Virtual Box)

File line 127 syntex errors

python sigploit.py
~/SigPloit-ss7 $ ls
LICENSE Testing sigploit.py ss7main.py
README.md init.py ss7
~/SigPloit-ss7 $ python sigploit.py
File "/data/data/com.termux/files/home/SigPloit-ss7/sigploit.py", line 127
print table[c][row],
^
SyntaxError: Missing parentheses in call to 'print'. Did you mean print(table[c][row], end=" ")?
~/SigPloit-ss7 $

(LocationTracking)> 0

Traceback (most recent call last):
File "sigploit.py", line 198, in
mainMenu()
File "sigploit.py", line 162, in mainMenu
ss7main.attacksMenu()
File "/home/roo1/SigPloit-ss7/ss7main.py", line 165, in attacksMenu
Fraud()
File "/home/roo1/SigPloit-ss7/ss7main.py", line 109, in Fraud
attacksMenu()
File "/home/roo1/SigPloit-ss7/ss7main.py", line 159, in attacksMenu
LocationTracking()
File "/home/roo1/SigPloit-ss7/ss7main.py", line 43, in LocationTracking
ss7.tracking.sri()
File "/home/roo1/SigPloit-ss7/ss7/tracking.py", line 31, in sri
sendRoutingInfo = check_call(['java','-jar', os.path.join(sri_path,jar_file)])
File "/usr/lib/python2.7/subprocess.py", line 185, in check_call
retcode = call(*popenargs, **kwargs)
File "/usr/lib/python2.7/subprocess.py", line 172, in call
return Popen(*popenargs, **kwargs).wait()
File "/usr/lib/python2.7/subprocess.py", line 394, in init
errread, errwrite)
File "/usr/lib/python2.7/subprocess.py", line 1047, in _execute_child
raise child_exception
OSError: [Errno 2] No such file or directory

is there something wrong with that code, and how can it be corrected?

python sigploit.py

┌──(kali㉿kali)-[~/SigPloit-ss7]
└─$ python sigploit.py
File "/home/kali/SigPloit-ss7/sigploit.py", line 127
print table[c][row],
^^^^^^^^^^^^^^^^^^^^
SyntaxError: Missing parentheses in call to 'print'. Did you mean print(...)?

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.