Analysis updated 2026-07-03
Find research papers, open-source tools, and conference talks covering a specific mobile network attack type like SS7 flaws or rogue base stations.
Follow the beginner skill path to start passively listening to publicly broadcast cellular signals using inexpensive software-defined radio hardware around $35-$40.
Research recently disclosed vulnerabilities in 5G and LTE open-source core network software using the 2024-2025 update sections.
| w00t3k/awesome-cellular-hacking | daviddrysdale/python-phonenumbers | lihangleo2/shadowlayout | |
|---|---|---|---|
| Stars | 3,737 | 3,737 | 3,737 |
| Language | — | Python | Java |
| Setup difficulty | easy | easy | easy |
| Complexity | 1/5 | 2/5 | 2/5 |
| Audience | researcher | developer | developer |
Figures from each repo's GitHub metadata at analysis time.
Awesome Cellular Hacking is a curated reference list for people studying the security of mobile phone networks, covering everything from 2G (GSM, the older technology) through to the current 5G standard. The repository does not contain software that you run, it is a structured collection of links to research papers, academic talks, open-source tools, tutorials, and conference presentations that the security research community has produced over the years. The material is organized by topic. Sections cover rogue base stations (fake cell towers that intercept communications), software-defined radio hardware and how to configure it for research, specific attack categories like SS7 signaling flaws (a decades-old weakness in how telecom networks interconnect), SIM card security, surveillance technology, and techniques for detecting and defending against these threats. There are also sections covering more recent areas: private 5G network security, IoT devices that connect via cellular, satellite-cellular integration, and automotive applications. The repository includes a getting-started guide for people new to the field, with a tiered skill path. The beginner level involves passive listening using inexpensive hardware (around $35-$40) and open-source software to decode publicly broadcast cellular signals without transmitting anything. Intermediate and advanced levels involve building private test networks in radio-shielded environments and doing protocol-level research with more expensive equipment. The disclaimer in the repository is explicit: this material is intended for defensive security research and education, and any active testing must comply with applicable laws. Setting up equipment that transmits on cellular frequencies without authorization is illegal in most countries. Recent updates (2024-2025) include summaries of disclosed vulnerabilities in real LTE and 5G software implementations, with some affecting widely deployed open-source core network software. The full README is longer than what was shown.
A curated reference list of research papers, tools, talks, and tutorials on mobile network security from 2G to 5G, covering topics like SS7 vulnerabilities, rogue base stations, SIM security, and 5G exploits.
Setup difficulty is rated easy, with roughly 5min to a first successful run.
Mainly researcher.
This repo across BitVibe Labs
Verify against the repo before relying on details.