News

• 6.8.2021 SigFW is prototyping the SS7 confidentiality and integrity protection using DTLS sessions

• 9.6.2021 tshark + ELK: Network Traffic Monitoring and Analysis - BlackHat USA 2021 arsenal

• 7.5.2021 5G Networks and Interconnect Threats - #HITB2021AMS COMMSEC conference talk

• 16.4.2021 tsharkVM updated to support ELK 7.12 and tshark 3.2.3.

• 19.11.2020 Security Model Of Endpoint Devices - DeepSec 2020 conference talk

Source code and slides: https://github.com/H21lab/Android2PrivateLAN

• 26.9.2020 json2pcap script was updated to enable easier pcap manipulation.

• 4.6.2020 5GC_build is project to demonstrate how to use OpenAPI generators for 5GC_API

• 2.6.2020 json2pcap script is supporting pcap anonymization

• 26.5.2020 tshark + ELK VM project available https://github.com/H21lab/tsharkVM

• 9.1.2020

  • SigFW is supporting the Diameter security by implementing the GSMA DESS Phase1 (Diameter integrity protection) according to the latest changes in GSMA FS.19 document.

  • Additionally it is prototyping the DESS Phase2 (Diameter confidentiality and integrity protection) using DTLS sessions. Recently updated were the signatures for the DESS Phase2.

• 8.10.2019 tshark + Elastic in Docker article added to see how to perform pcap analytics using Docker images

• 28.8.2019 IANA registered the GSMA DESS extension for Diameter interconnect security. The SigFW code has been updated according to it.

• 18.6.2018 Analyzing Network Captures, Crafting Network Protocols, Kali Linux Tips, Penetration Testing Cheat Sheet pages added to Tools

• 29.12.2017 Updates in Anomaly Detection repository (unsupervised learning added)