From 1b07e3bfeb40be15cc5c4b2bda81c0fe78efa3cc Mon Sep 17 00:00:00 2001 From: Cooper Quintin Date: Fri, 5 Jan 2024 16:44:19 -0800 Subject: [PATCH 1/2] update readme and scirpts --- README.md | 35 +++++++++++++++++++++++++++++------ config.toml.example | 3 +++ scripts/wavehunter_daemon | 2 +- 3 files changed, 33 insertions(+), 7 deletions(-) create mode 100644 config.toml.example diff --git a/README.md b/README.md index d10ff20..f1c4301 100644 --- a/README.md +++ b/README.md @@ -1,11 +1,21 @@ -# Wave Hunter +# Orca ``` -@@@ @@@ @@@ @@@@@@ @@@ @@@ @@@@@@@@ @@@ @@@ @@@ @@@ @@@ @@@ @@@@@@@ @@@@@@@@ @@@@@@@ -@@! @@! @@! @@! @@@ @@! @@@ @@! @@! @@@ @@! @@@ @@!@!@@@ @!! @@! @@! @@@ -@!! !!@ @!@ @!@!@!@! @!@ !@! @!!!:! @!@!@!@! @!@ !@! @!@@!!@! @!! @!!!:! @!@!!@! - !: !!: !! !!: !!! !: .:! !!: !!: !!! !!: !!! !!: !!! !!: !!: !!: :!! - ::.: ::: : : : :: : :: :: : : : :.:: : :: : : : :: :: : : : + + + u. .u . + ...ue888b .d88B :@8c . u + 888R Y888r ="8888f8888r .udR88N us888u. + 888R I888> 4888>'88" <888'888k .@88 "8888" + 888R I888> 4888> ' 9888 'Y" 9888 9888 + 888R I888> 4888> 9888 9888 9888 +u8888cJ888 .d888L .+ 9888 9888 9888 + "*888*P" ^"8888*" ?8888u../ 9888 9888 + 'Y" "Y" "8888P' "888*""888" + "P' ^Y" ^Y' + + +Orca Realtime Cellular Analysis _ _ _ _ _ _ _ _ )`'-.,_)`'-.,_)`'-.,_)`'-.,_)`'-.,_)`'-.,_)`'-.,_)`'-.,_ @@ -25,3 +35,16 @@ _ _ _ _ _ _ _ _ ``` diag helper binary for the Orbic mobile hotspot. Based on code from [QCSuper](https://github.com/P1sec/QCSuper) + +Build for arm using `cargo build` or just use the makefile + +Run tests using `cargo test_pc` + +## Setup +Root your device using the instructions here: https://xdaforums.com/t/resetting-verizon-orbic-speed-rc400l-firmware-flash-kajeet.4334899/#post-87855183 + +Push the scripts in `scripts/` to /etc/init.d on device and make a directory called /data/wavehunter using `adb shell` (and sshell for your root shell if you followed the steps above) + +you also need to copy `config.toml.example` to /data/wavehunter/config.toml + +Then run ./make.sh this will build the binary and push it over adb. Restart your device or run `/etc/init.d wavehunter_daemon start` on the device and you are good to go. diff --git a/config.toml.example b/config.toml.example new file mode 100644 index 0000000..b8da6ac --- /dev/null +++ b/config.toml.example @@ -0,0 +1,3 @@ +# cat config.toml +port = 8080 +qmdl_path = "wavehunter.qmdl" diff --git a/scripts/wavehunter_daemon b/scripts/wavehunter_daemon index da469c4..7a6c0b9 100644 --- a/scripts/wavehunter_daemon +++ b/scripts/wavehunter_daemon @@ -6,7 +6,7 @@ case "$1" in start) echo -n "Starting wavehunter: " start-stop-daemon -S -b --make-pidfile --pidfile /tmp/wavehunter.pid \ - --startas /bin/bash -- -c "exec /data/wavehunter/wavehunter > /data/wavehunter/wavehunter.log 2>&1" + --startas /bin/bash -- -c "exec /data/wavehunter/wavehunter /data/wavehunter/config.toml > /data/wavehunter/wavehunter.log 2>&1" echo "done" ;; stop) From c343d5d9a9efd08c62ba1ca88f0b3286bffdaea5 Mon Sep 17 00:00:00 2001 From: Cooper Quintin Date: Fri, 12 Jan 2024 16:42:13 -0800 Subject: [PATCH 2/2] update readme and config.toml --- README.md | 26 ++++++++++++++++++++++---- config.toml.example | 5 +++-- 2 files changed, 25 insertions(+), 6 deletions(-) diff --git a/README.md b/README.md index f1c4301..ac43126 100644 --- a/README.md +++ b/README.md @@ -34,14 +34,32 @@ _ _ _ _ _ _ _ _ \__; ``` -diag helper binary for the Orbic mobile hotspot. Based on code from [QCSuper](https://github.com/P1sec/QCSuper) +IMSI Catcher Catcher for the Orbic mobile hotspot. Based on code from [QCSuper](https://github.com/P1sec/QCSuper) -Build for arm using `cargo build` or just use the makefile +**THIS CODE IS PROOF OF CONCEPT AND SHOULD NOT BE RELIED UPON IN HIGH RISK SITUATIONS** + +Code is built and tested for the Orbic RC400L mobile hotspot, it may work on other orbics and other +linux/qualcom devices but this is the only one we have tested on. Buy the orbic [using bezos bucks](https://www.amazon.com/gp/product/B09CLS6Z7X/) + +Root your device on windows using the instructions here: https://xdaforums.com/t/resetting-verizon-orbic-speed-rc400l-firmware-flash-kajeet.4334899/#post-87855183 +(script to root on linux coming soon) + + + +## Setup +on your linux laptop install rust the usual way and then install cross compiling dependences. +run `sudo apt install build-essential libc6-armhf-cross libc6-dev-armhf-cross gcc-arm-linux-gnueabihf` + +set up cross compliing for rust: +``` +rustup target add x86_64-unknown-linux-gnu +rustup target add armv7-unknown-linux-gnueabihf +``` + +Build for arm using `cargo build` Run tests using `cargo test_pc` -## Setup -Root your device using the instructions here: https://xdaforums.com/t/resetting-verizon-orbic-speed-rc400l-firmware-flash-kajeet.4334899/#post-87855183 Push the scripts in `scripts/` to /etc/init.d on device and make a directory called /data/wavehunter using `adb shell` (and sshell for your root shell if you followed the steps above) diff --git a/config.toml.example b/config.toml.example index b8da6ac..7efaea2 100644 --- a/config.toml.example +++ b/config.toml.example @@ -1,3 +1,4 @@ -# cat config.toml +# cat config.toml +qmdl_store_path = "/data/wavehunter/qmdl" port = 8080 -qmdl_path = "wavehunter.qmdl" +readonly_mode = false