.jpg)
(GSM SIMs)
STEALTH HACKER
The stages• Scan the SIM to extract IMSI (just read it!)
and Ki, the 128 bit key (for COMP128-1
only, so far….)
• Now put the IMSI and Ki into some card
software
• And then copy it into a new SIM card
• We now have a cloned SIM
and Ki, the 128 bit key (for COMP128-1
only, so far….)
• Now put the IMSI and Ki into some card
software
• And then copy it into a new SIM card
• We now have a cloned SIM
First we need to read the SIM• A small reader, connected to a serial port.
Home made for $5
Home made for $5
Then we need to find Ki
• We need Ki and IMSI, we can use
Simscan from Dejan’s pages that will
break COMP128-1
Simscan from Dejan’s pages that will
break COMP128-1
Here’s the software• Simscan ready to go 
Now scanning the card
• Searching for the key
Getting there• The result slowly appears (this one looks
interesting!)
interesting!)
Now we have it!• This was a SIM supplied to delegates at ameeting, Ki is a bit obvious isn’t it!
Now to create the software• Using some more software from theInternet called KiSsMi we create the
software for the card
We now need to program the SIM
• We use a single chip PIC computer which
is in a SIM shaped package (GOLD
CARD)
• We use a smart card programmer (easily
bought on the Internet)
• And then we program up the card….
• We use a single chip PIC computer which
is in a SIM shaped package (GOLD
CARD)
• We use a smart card programmer (easily
bought on the Internet)
• And then we program up the card….
The programmer…..
• With the card ready to go
The software for the programmer• Just load in the software we created with
KiSsMi using VxTools
And we now have a cloned card• Note: My way is rather long! Many people
sell the equipment cheaply…
• Only works with COMP128-1
• So now please think about changing to a
new algorithm……….
FOR LATEST TRIX & HACKING TIPS- SEND MESSAGE FROM YOUR MOBILE
START HACK_ROOM TO 9223050606
