VoLTE Phreaking

Explore the world of Voice over 4G (VoLTE) phreaking in this conference talk from the Hack In The Box Security Conference. Delve into the resurgence of telephony signaling path accessibility for end users, drawing parallels to the phreaking era of the 1980s. Discover vulnerabilities in European providers' 4G infrastructures implementing SIP and VoLTE, including text message spoofing, subscriber enumeration, location determination, IMEI leakage, and potential SIM-card sharing attacks. Journey through the history of phone phreaking, tracing notable events and discoveries over the years. Learn about the evolution of technologies like VoIP, VoLTE, and VoWiFi, along with 4G and VoLTE infrastructure components and protocols. Witness demonstrations using a rooted Android phone to showcase user control over the VoLTE stack, including hidden activities and extraction of IPsec keys. Gain insights into monitoring IPv6 SIP traffic using Wireshark and imported keys. Discover a newly released tool for Android that enables real-time monitoring of VoLTE traffic, allowing observation of headers and information leaks during phone calls.

#HITBHaxpo D1 - VoLTE Phreaking - Ralph Moonen