e3v3a / xgoldmon Goto Github PK
View Code? Open in Web Editor NEWThis project forked from harpreet-s/xgoldmon
Convert log messages by phones with XGold baseband processor back to GSM/UMTS radio messages
License: GNU General Public License v2.0
xgoldmon's Introduction
xgoldmon ======== xgoldmon is a small tool to convert the messages output by the USB logging mode of phones with Intel/Infineon XGold baseband processor back to the GSM/UMTS radio messages sent over the air so you can watch them in e.g. Wireshark in realtime. This includes signalling for calls, SMS, USSD, paging for your and other phones and so on. Currently, these devices are supported: - Samsung Galaxy S4 GT-I9500 (this is the version without LTE!) - Samsung Galaxy S3 GT-I9300 - Samsung Galaxy Nexus GT-I9250 (has to be rooted!) - Samsung Galaxy S2 GT-I9100 - Samsung Galaxy Note 2 GT-N7100 Patches for other devices or to decode more messages are very much welcome! -Tobias Engel Mail: [email protected] Twitter: @2b_as How to build ============ xgoldmon has been tested on Linux and OSX. As a prerequisite, a recent version of libosmocore has to be installed. See here for instructions: http://bb.osmocom.org/trac/wiki/libosmocore (If you install it in a non-standard location please set PKG_CONFIG_PATH accordingly.) Then run "make" in the xgoldmon directory. An xgoldmon binary should be created. Before running xgoldmon ======================= To enable the logging mode ("diag mode") on the S2, S3 and Note2: - Go to the Phone application, enter *#9900# and set "Debug Level Enabled" to "HIGH". The phone will reboot. - Go to the Phone application again, enter *#7284# and set "USB" to "MODEM" and tap "SAVE and RESET". The phone will reboot again. The Galaxy Nexus has to be rooted first to activate diag mode! Then: - In the adb shell, as root, enter: echo MODEM > /sys/devices/tuna_otg/usb_sel - Connect to the first of the serial devices (e.g. /dev/ttyACM0) with a terminal emulator and enter AT+TRACE=1 When connecting the phone via USB to the computer, several new pseudo-tty devices should be created. The one with the second lowest number should be the logging port. So for example on Linux, if you have no other ttyACM* devices, it should be /dev/ttyACM1. xgoldmon tries to set proper serial attributes on the device if the "-s" option is specified. If that fails, you might have to do that yourself with something like stty 115200 pass8 raw -noflsh -F /dev/ttyACM1 Running xgoldmon ================ E.g.: xgoldmon -t s3 -l /dev/ttyACM1 Full usage: usage: ./xgoldmon [-t <phone type>] [-l] [-s] [-i <ip address>] [-v] <logfile or device> -t: select 's4', 's3', 'gnex', 's2' or 'note2' (default: 's3') -l: print baseband log messages -s: set proper serial device attributes -i: send gsmtap packets to given ip address (default: 'localhost') -v: show debugging messages (more than once for more messages) In some situations, the phone might close the device, causing xgoldmon to exit. If you want to do some unsupervised logging, it might be a good idea to put the call to xgoldmon in a loop. Watching the radio messages in Wireshark ======================================== xgoldmon uses libosmocore to send the radio messages in GSMTAP format (http://bb.osmocom.org/trac/wiki/GSMTAP) to UDP port 4729 on the local host. In order to monitor the packages with Wireshark, something has to listen on that port, e.g. nc -u -l 4729 Then, in Wireshark, start a capture on the loopback interface. To see only the GSMTAP messages, set this filter: udp.port==4729 GSM messages will be decoded out-of-the box in Wireshark. For UMTS/RRC messages, you need a recent development version of Wireshark (at least revision 47792), which you most likely will have to build yourself. If everything works, it should look a bit like the "screenshot-mtsms-while-in-a-call.png". It contains a screenshot of Wireshark that shows an S3 receiving a text message while in a call. (Lots of messages filtered out to show the more relevant messages) Thanks ====== Many thanks to... * Harald Welte and GSMK Cryptophone for their support in making this tool * Nico Golde (@iamnion) for adding support for the Note 2 * Yan Grunenberger (@yangrunenberger) for finding out how to activate diag mode on the Galaxy Nexus * Max for adding options to set serial attributes and gsmtap ip address
xgoldmon's People
Contributors
Watchers
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. ๐๐๐
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google โค๏ธ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.