Abaphandi abavela kwi-Korea Advanced Institute of Technology baye bapapasha i-LTESniffer toolkit, evumela ukuba u-passively (ngaphandle kokuthumela iimpawu emoyeni) ulungelelanise ukumamela kunye nokuthintela i-traffic phakathi kwesikhululo esisisiseko kunye neselfowuni kwiinethiwekhi ze-4G LTE. I-toolkit ibonelela ngezinto eziluncedo zokuququzelela ukungenelela kwe-traffic kunye nokuphunyezwa kwe-API ekusebenziseni ukusebenza kwe-LTESniffer kwizicelo zomntu wesithathu.
I-LTESniffer inikezela nge-decoding ye-PDCCH yeshaneli ebonakalayo (i-Physical Downlink Control Channel) ukufumana ulwazi malunga ne-traffic ukusuka kwisikhululo esisisiseko (i-DCI, i-Downlink Control Information) kunye neempawu zenethiwekhi zesikhashana (i-RNTI, i-Radio Network Temporary Identifier). Inkcazo ye-DCI kunye ne-RNTI ivumela ngakumbi i-decoding data kwi-PDSCH (i-Physical Downlink Shared Channel) kunye ne-PUSCH (i-Physical Uplink Shared Channel) iziteshi zokufumana ukufikelela kwi-traffic engenayo nephumayo. Kwangaxeshanye, i-LTESniffer ayikhiphi imiyalezo efihliweyo edluliselwe phakathi kwefowuni ephathwayo kunye nesitishi esisisiseko, kodwa ibonelela ngokufikelela kuphela kulwazi oludluliselwe kumbhalo ocacileyo. Ngokomzekelo, imiyalezo ethunyelwe sisikhululo sesiseko kwimodi yokusasazwa kunye nemiyalezo yokuqala yoxhumo ihanjiswa ngaphandle kwe-encryption, eyenza kube lula ukuqokelela ulwazi malunga nokuba yeyiphi inombolo, nini kunye nenani apho kwakukho iifowuni).
Ukungenelela kufuna izixhobo ezongezelelweyo. Ukuthintela i-traffic kuphela kwisikhululo sesiseko, i-USRP B210 i-transceiver programmable (SDR) ene-antenna ezimbini, exabisa malunga ne-$ 2000, yanele. Ukuthintela i-traffic ukusuka kwifowuni ephathwayo ukuya kwisikhululo sesiseko, ibhodi ebiza kakhulu ye-USRP X310 SDR kunye nee-transceivers ezimbini ezongezelelweyo (ikhithi ixabisa malunga ne-11000 yeedola) iyafuneka, ekubeni i-passive sniffing yeepakethi ezithunyelwe ngeefowuni zifuna ukulungelelaniswa kwexesha elichanekileyo phakathi kwezakhelo ezithunyelwe kunye nezifunyenweyo kunye nokwamkelwa kwangaxeshanye kweempawu kwiibhendi ezimbini ezahlukeneyo zefrikhwensi. Ikhompyutheni enamandla ngokwaneleyo nayo iyafuneka ukucacisa iprotocol, umzekelo, ukuhlalutya i-traffic yesikhululo esisisiseko esinabasebenzisi abasebenzayo be-150, inkqubo ye-Intel i7 CPU kunye ne-16GB ye-RAM iyacetyiswa.
Iimpawu eziphambili zeLTESniffer:
- I-real-time decoding yeendlela eziphumayo nezingenayo zolawulo lwe-LTE (PDCCH, PDSCH, PUSCH).
- Inkxaso ye-LTE Advanced (4G) kunye ne-LTE Advanced Pro (5G, 256-QAM) iinkcukacha.
- Inkxaso ye-DCI (i-Downlink Control Information) iifomathi: 0, 1A, 1, 1B, 1C, 2, 2A, 2B.
- Inkxaso yeendlela zokudlulisa idatha: 1, 2, 3, 4.
- Inkxaso yezahlulo zolwahlulo lwe-frequency duplex (FDD) amajelo.
- Inkxaso yezikhululo ezisisiseko ezisebenzisa iifrikhwensi ukuya kuthi ga kwi-20 MHz.
- Ukufunyanwa ngokuzenzekelayo kwezicwangciso zokumodareyitha ezisetyenzisiweyo kwiinkcukacha ezingenayo neziphumayo (16QAM, 64QAM, 256QAM).
- Ukufunyanwa ngokuzenzekelayo kwezicwangciso zomaleko womzimba kwifowuni nganye.
- Inkxaso ye-LTE yoKhuseleko lwe-API: Imephu ye-RNTI-TMSI, iqoqo le-IMSI, iprofayili.
umthombo: opennet.ru