IMEI by WiFi router...
 
Notifications
Clear all

IMEI by WiFi router collecting

4 Posts
3 Users
0 Likes
846 Views
RolfGutmann
(@rolfgutmann)
Posts: 1185
Noble Member
Topic starter
 

This is a theoretical issue and came out of a national forensics training last year. Us was given the challenge to create a solution to bring a smartphone (iOS-based Apple) speaking by beacons with a WiFi to reveal its own IMEI. The goal In the end the WiFi router knows the IMEI of the - not connected but just talking by beacons smartphone.

Ok. You get the picture.

Actually iOS 10.3.2 beta 3 (14F5080a) does not provide a simple way of getting the IMEI over WiFi.

But, lets start thinking. What is required to bring out the IMEI (inserted but by flight modus silent UICC in-device) by WiFi?

Is there a chance to 'temporarily kind-of-decept' the smartphone to reveal the IMEI? Would e.g. an IMEI lookup-app help?

If you find thinking this issue boring. Just skip and relax your evening by beer & pretzel -)
If not, post pls - thks

 
Posted : 19/04/2017 10:30 pm
(@droopy)
Posts: 136
Estimable Member
 

Easy.

Just use openbts, you will get an IMSI of the device.
Now sniff traffic by an interceptor of mobile network.

IMSI + IMEI pair is sent.

You get IMEI

 
Posted : 19/04/2017 11:29 pm
(@trewmte)
Posts: 1877
Noble Member
 

Are you talking in-live (ephemeral data) or historical data and at which point in the hop are you referring e.g. from first registration or somewhere in between before the end anchor point? For instance, if target is moving when do you expect to join the queue?

 
Posted : 20/04/2017 1:14 am
RolfGutmann
(@rolfgutmann)
Posts: 1185
Noble Member
Topic starter
 

@droopy - I apologize but wanted to say that the smartphone is in disabled mode due to Mobile Broadband by activated 'Flight modus' which disables by SW the modem.

 
Posted : 20/04/2017 11:50 pm
Share: