Skip to content
/ sim-ota-updates Public
forked from thomascannon/sim-ota-updates

Extracting MAC from SIM cards to crack DES OTA key for SIM updates

0 stars 11 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

0x7678/sim-ota-updates

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits

pySim

pySim

 
 

README.md

README.md

 
 

calc-mac.py

calc-mac.py

 
 

check-macs.sh

check-macs.sh

 
 

get-mac.py

get-mac.py

 
 

globebrute.out

globebrute.out

 
 

Repository files navigation

OTA SIM Update

The idea of this script is to request a response from a SIM card signed with a DES key. Once in possession of the MAC you can go about cracking the key used to generate it and then be able to sign and load your own apps onto the SIM.

In reality DES hasn't been used in most SIMs in years. I was only able to elicit the appropriate response from one SIM from the Philippines, and that couldn't be cracked.

However, researcher Karsten Nohl has had real success with certain SIM cards and has presented great research on the topic.

This was a quick hack, using various sources, doesn't include documentation and I expect won't do anything for you. It might be useful in related work however, so take it for what it is.

Rather than use this you should probably go and checkout SRLabs' SIMtester which is now released.

About

Extracting MAC from SIM cards to crack DES OTA key for SIM updates

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Python 98.4%
  • Shell 1.6%