Selling : SS7 Gateway Access

[giggins]

does this really work or its scam?

 

[th3tr0ll]

I am currently in an ongoing arbitration with the buyer and will wait until that is concluded before offering a full account. I urge buyers to use the guarantor.

Hello, can you update us regarding your tests?

 

[sidviscous]

Hello, can you update us regarding your tests?

Hello. The arbitration ended with a refund. The seller was unhelpful. This is his right. As he stated (and could state more clearly), he does not provide any sort of support beyond giving you the panel. This is a sale of access alone. That said, a knowledgeable friend indicated that the SS7 functions were not. authentic and that the panel was more or less just for SIP trunking. I would look forward to the seller addressing these concerns, but the seller is mostly unwilling to address much of anything at all. Ultimately, and until proven otherwise, I do not believe this panel to fulfill its promises, and would advise those looking for SS7 capabilities around SMS and SMS interception to look at other options.

 

[swap3r]

Hello. The arbitration ended with a refund. The seller was unhelpful. This is his right. As he stated (and could state more clearly), he does not provide any sort of support beyond giving you the panel. This is a sale of access alone. That said, a knowledgeable friend indicated that the SS7 functions were not. authentic and that the panel was more or less just for SIP trunking. I would look forward to the seller addressing these concerns, but the seller is mostly unwilling to address much of anything at all. Ultimately, and until proven otherwise, I do not believe this panel to fulfill its promises, and would advise those looking for SS7 capabilities around SMS and SMS interception to look at other options.

as it was expected. the ss7 access mostly is not enough to make interceptions. there should be strong skills in telecom (telecom engeneer with MAP skills).

вполне ожидаемо, кроме доступа к окс-7 еще не мешало бы иметь кое-какие скилы в телекоме, в частности иметь знания в области мап запросов, а если копнуть еще глубже, то там и дополнительные нюансы вылезать начнут.

 

[Kolyska_official]

few years latter smoke this thread

if author interest i can check his access and write results i have many manuals

 

[Kolyska_official]

 

[Kolyska_official]

 

[swap3r]

Посмотреть вложение 35766

а этот слайд откуда взят?
он совсем не в тему доступа к сигналке, кстати, но весьма интересен по другому поводу (протокол довольно нов и будет в ближайшем будущем использоваться)
sorry уже нашел, что это Luca Melette - соответственно, вполне достойно того, чтобы посмотреть весь пейпер внимательнее

 

[bratva]

а этот слайд откуда взят?
он совсем не в тему доступа к сигналке, кстати, но весьма интересен по другому поводу (протокол довольно нов и будет в ближайшем будущем использоваться)
sorry уже нашел, что это Luca Melette - соответственно, вполне достойно того, чтобы посмотреть весь пейпер внимательнее

Ленивым и себе для закладок:
Black Hat Europe 2019

Mobile Network Hacking, IP Edition
Mobile networks have gone through a decade of security improvements ranging from better GSM encryption to stronger SIM card and SS7 configurations. These improvements were driven by research at this and other hacking conferences.


Meanwhile, the networks have also mushroomed in complexity by integrating an ever-growing number of IT technologies from SIP to WiFi, IPSec, and most notably web technologies.


This talk illustrates the security shortcomings when merging IT protocols into mobile networks. We bring back hacking gadgets long thought to be mitigated, including intercepting IMSI catchers, remote SMS intercept, and universal caller ID spoofing.

We explore which protection measures are missing from the mobile network and discuss how to best bring them over from the IT security domain into mobile networks.

Слайды - https://i.blackhat.com/eu-19/Wednesday/eu-19-Yazdanmehr-Mobile-Network-Hacking-IP-Edition-2.pdf

Полное выступление -

Тема чрезвычайно интересная, как и удручает малое количество людей, кто в ней разбирается.

 

[swap3r]

Ленивым и себе для закладок:
Black Hat Europe 2019

достаточно было имени докладчика, он достаточно известен в своих кругах )
а темы на стыке ип и мобильной телефонии весьма интересные, там много чего интерестного выцепить можно

 

[Veil]

Может ли девайс типа SS7 to VoIP/SIP gateway позволить перехватывать СМС любого номера в любой стране, как заявляет ТС, при наличии доступа к его админке? Это вообще реально? Нужны ли дополнительные тулзы для снифа траффика и его декодинга?

Также был оставлен без внимания данный вопрос:


Интересует экпертное мнение любого мембера, не только ТСа, это же технический форум

Я не такой уж крутой спец по телефонии, но начальные знания имеются.
Все что пишет ТС это бред сивой кобылы и развод лохов.
Что такое шлюз в связи? Это грубо говоря преобразователь с пакетной передачи VOIP в канальную ( Сотовая и проводная, которая идет по ОКС-7) и наоборот. В противном случае проводной абонент просто не услышит IP.
Все остальное делает станция АТС. Но и станции бывают разные магистральные, региональные, местные.
Соответственно местные берут трафик у регионального, региональный у магистрального. И когда ты звонишь или тебе звонят на местный телефон, то трафик проходит не напрямую от точки до точки. А проходит от тебя сначала на магистральный, затем на региональный, а уж потом на твой местный. И наоборот.
TAU ( терминал абонентский универсальный) у связистов тоже является шлюзом! Он преобразуют IP телефонию в обычную проводную. Подключаешь его через роутер к интернету, а с другой стороны подключаешь обычные проводные телефоны. Конечно же TAU настраиваешь на станцию.
Телефония порождает столько мифов, что просто смех разбирает. Задался вопросом. Почему? Оказалось все очень просто. Связистов стали выпускать меньше в десятки раз. Их кафедры заняли айтишники, как более перспективное направление. Хотя это абсолютно разные знания.

 

[DaF0x]

Is there a period of time in using the control panel when buying or selling the panel for life?

Tox ID

0DE59F8CE79643719398E7F0CD84FCAEB719C39A484E760F218B312B54A5E85AECAFD864A19A

 

[crytic]

Hello. The arbitration ended with a refund. The seller was unhelpful. This is his right. As he stated (and could state more clearly), he does not provide any sort of support beyond giving you the panel. This is a sale of access alone. That said, a knowledgeable friend indicated that the SS7 functions were not. authentic and that the panel was more or less just for SIP trunking. I would look forward to the seller addressing these concerns, but the seller is mostly unwilling to address much of anything at all. Ultimately, and until proven otherwise, I do not believe this panel to fulfill its promises, and would advise those looking for SS7 capabilities around SMS and SMS interception to look at other options.

Hi , did u find any leegit SS7 provider? thanks

 

[lifeofhonzi]

I heard from CyberJagu that the access and 0day needs to be installed and configured at the PBX station itself with the help of a Telecom engineer, in order to enable live SMS interception with this access. It's took 6 hours to install even with the help of a Telecom engineer. He said if you need to hire people yourself to configure this for you, or be a Telecom engineer yourself and install it manually according to the instructions given in the manual.

 

[SMILE]

awesome

 

[DaF0x]

I'm very interested. Is it a lifetime use or a monthly or semi-annual subscription? I wish to clarify

 

[DaF0x]

SS7 gateways with SSH SIP and web panel


We sell each for 10k$


can i use it for any number/country ?
- it works for any call or sms worldwide and carrier doesn't matter because of roaming

what is required?
- you just need a phone number to start your work

We have limited amount of gateways for now the count is 6

The sale is unique We don't resold the same gateway , so it will be the exclusive access

if you are serious buyer we could negotiate in price

we hack different brands of gateways so when we have new ones fresh one could be different from last ones

Note : We Don't provide any free test , Support
You will get only Gateway access as Admin + official user manual with documentation of 330+ pages of pdf

we don't give any support for intercept and other process we've tested it with a telecom sys admin and its long and complex process to done it

only few researchers or APT groups know how it works and who works in telecom as sys admin
so buy this gateway with all point of view


I would like to tell time wasters that if you Don't have funds or not interested in this then stay away from us

Official Forum Escrow Accepted

You can contact us via jabber : longpig@jabber.calyxinstitute.org , Cyberjagu@jabber.calyxinstitute.org

I'm very interested. Is it a lifetime use or a monthly or semi-annual subscription? I wish to clarify

 

[Everydoor]

Honestly, it is easy to grant the access to an SS7 server.

 

[Sofu]

I found such a site but I don't know if it is reliable. HERE

 

[Everydoor]

I found such a site but I don't know if it is reliable. HERE

It is a scam, almost with mathematical certainty.