Practical Cellphone Spying

This video is part of the Infosec Video Collection at

Defcon 18 – Practical Cellphone Spying

It’s widely accepted that the crypto in GSM can be broken, but did you know that if you’re within radio range of your target you can intercept all of their cellphone calls by bypassing the cryptoscheme entirely?

This talk discusses the practical aspects of operating an IMSI catcher, a fake GSM base station designed to trick the target handset into sending you its voice traffic. Band jamming, rolling LACs, Neighbour advertisements and a wide range of radio trickery will be covered, as well as all the RF gear you’ll need to start listening in on your neighbours.