Skip to content

BramBonne/snoopsnitch-pcapinterface

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

893 Commits

SnoopSnitch

SnoopSnitch

 
 

analysis

analysis

 
 

contrib

contrib

 
 

.gitignore

.gitignore

 
 

.gitmodules

.gitmodules

 
 

COPYING

COPYING

 
 

README.md

README.md

 
 

Repository files navigation

PCAP additions

This fork was created in order to allow the PCAP data from the /dev/diag interface to be exposed through either adb or on the local network.

To enable this functionality, go to SnoopSnitch's developer settings (Menu > Settings > Development), and enable 'PCAP socket'. Enabling the 'Listen on public network' option will allow you to connect over the network to the chosen port.

Example usage is available in the file Snoopsnitch/runforwardwireshark.sh, where the socket is forwarded over adb to the local machine, and is then used for a live packet analysis in Wireshark.

SnoopSnitch

This is the SnoopSnitch source repository. SnoopSnitch collects and analyzes mobile radio data to make you aware of your mobile network security and to warn you about threats like fake base stations (IMSI catchers), user tracking and over-the-air updates.

License

Copyright (C) 2014, 2015 Security Research Labs

This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.

See COPYING for details.

Resources

Project website: https://opensource.srlabs.de/projects/snoopsnitch Public Git repository: https://opensource.srlabs.de/git/snoopsnitch.git Mailing list: https://lists.srlabs.de/cgi-bin/mailman/listinfo/gsmmap Email: snoopsnitch@srlabs.de (PGP: 9728 A7F9 D457 1FBB 746F 5381 D52C AC10 634A 9561)

Building from source

SnoopSnitch - including helper binaries - is known to build sucessfully on Linux and OS X. When using the prebuilt helper binaries contained in the repository, the app may also build on Windows.

To build SnoopSnitch you need the Android SDK [1] for building the actual app and the Android NDK [2] to build the native components like the Qualcomm DIAG wrapper or the GSM parser. Download SDK and NDK and install it somewhere in your file system. Set the environment variable NDK and SDK to the respective paths:

$ export ANDROID_HOME=<your_sdk_dir>
$ export NDK_DIR=<your_ndk_dir>

IMPORTANT NOTE: contrib/prebuilt/ contains binaries to allow e.g. windows users to build and deploy the SnoopSnitch app easily. However, you can rebuild everything contained in contrib/prebuilt - including the libasn1c and libosmocore projects we depend on - from source using the contrib/compile.sh script. The source of those projects is pulled in by the build scripts through sub-modules.

As SnoopSnitch ships with the prebuilt binaries, the following step is optional. To build the parser binary from source, the ant packages are required:

$ sudo apt-get install ant default-jdk

In the SnoopSnitch source directory do the following:

$ cd contrib/
$ ./compile.sh -t android -g -u

To build the app, in the SnoopSnitch source directory do the following:

$ cd SnoopSnitch
$ ant debug

Please please consult the Android documentation on how to set up the tools and perform a release build.

[1] https://developer.android.com/sdk/ [2] https://developer.android.com/tools/sdk/ndk/

About

Fork of SnoopSnitch that allows PCAP data to be read over the network or adb

opensource.srlabs.de/projects/snoopsnitch

Resources

Readme

License

GPL-3.0 license
Activity

Stars

7 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages