The Digital Frontier Basis (EFF) has launched a free open supply device referred to as Rayhunter that’s designed to detect cell web site simulators (CSS), also referred to as IMSI or stripe receptors.
Stingray units imitate legit cell towers to deceive the telephones to attach, permitting them to seize confidential knowledge, exactly geolocate customers and intercept communications.
With the launch of the Rayhunter, EFF seeks to present customers the facility to detect these situations, permitting them to guard themselves and likewise assist draw a clearer picture of the precise implementation scale of the stripes.
How Rayhunter works
Rayhunter is an open supply device designed to detect StinGry stripes capturing management site visitors (signaling knowledge) between the cellular entry level and the cell tower to which it’s linked, however with out monitoring the person’s exercise.
“Rayhunter works by intercepting, storing and analyzing management site visitors (however not person site visitors, akin to net requests) between the Rayhunter cellular entry level and the cell tower to which it’s linked,” Learn the EFF announcement.
“Rayhunter analyzes actual -time site visitors and appears for suspicious occasions, which might embody uncommon purposes akin to the bottom station (cell tower) that tries degrade your 2G connection which is weak to different assaults, or the bottom station requesting its IMSI in suspicious circumstances. “
In comparison with different Stingray detection strategies that require rooted Android telephones and software program outlined radios, Rayhunter runs on a cellular entry level machine RC400L RC400L of $ 20 (4G LTE transportable router).
EFF selected this {hardware} for its Rayhunter assessments as a consequence of its affordability, generalized availability (Amazon, eBay) and portability, however factors out that its software program can even work effectively on different Linux/Qualcomm units.
Supply: EFF
When Rayhunter detects suspicious Pink site visitors, Orbic’s inexperienced/predetermined blue display screen turns into pink, informing customers of a potential Stingray assault.
Customers can entry and obtain the PCAP data which are maintained on the machine to acquire extra details about the incident or use them to confess forensic analysis.
For extra directions on how one can set up and use Rayhunter, see EFF github repository.
The EFF features a discharge of obligation that signifies that it’s seemingly that the software program just isn’t unlawful to make use of in the USA. Nevertheless, earlier than attempting to make use of this undertaking, it’s advisable to seek the advice of with a lawyer to find out whether or not it’s authorized to make use of in your nation.
Bleepingcomuter has not tried Rayhunter and can’t assure its security or effectiveness, so use it at its personal danger.
