The open source tool Sni5Gect targets vulnerabilities in 5G mobile networks through real-time message sniffing and attack payload injection. It exploits the period post-connection when communication is unencrypted, allowing attackers to capture traffic without knowledge of user credentials. The framework demonstrated over 80% accuracy in sniffing both uplink and downlink communication and a 70-90% success rate in packet injection. Notably, it can execute a novel downgrade attack from 5G to 4G, showcasing serious security flaws in current mobile network implementations.
Sni5Gect is a framework that sniffs messages from pre-authentication 5G communication in real-time and injects targeted attack payload in downlink communication towards the UE.
The framework exploits unencrypted messaging during the pre-authentication state, allowing attackers to sniff and inject messages without needing UE credentials.
Testing demonstrated Sni5Gect's ability to sniff uplink and downlink traffic with over 80 percent accuracy at ranges up to 20 meters.
Sni5Gect can execute a novel downgrade attack, enabling connections to be switched from 5G to 4G for malicious purposes.
Collection
[
|
...
]