Scribd
Upload
287 views7 pages

Smart Card Cloning Is Easy! (GSM Sims) : Charles Brookson

This document describes how to clone GSM SIM cards by extracting the IMSI and Ki values from a card using free software, and then programming a new SIM card with that data to create a cloned card that can be used on the same mobile network. The process involves using a small reader to read the SIM, software to break the COMP128-1 encryption and find the Ki key, creating software for the new SIM card, and programming the SIM using additional hardware and software.

Uploaded by

Rajiv Kumar
Copyright
© Attribution Non-Commercial (BY-NC)
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
287 views7 pages

Smart Card Cloning Is Easy! (GSM Sims) : Charles Brookson

This document describes how to clone GSM SIM cards by extracting the IMSI and Ki values from a card using free software, and then programming a new SIM card with that data to create a cloned card that can be used on the same mobile network. The process involves using a small reader to read the SIM, software to break the COMP128-1 encryption and find the Ki key, creating software for the new SIM card, and programming the SIM using additional hardware and software.

Uploaded by

Rajiv Kumar
Copyright
© Attribution Non-Commercial (BY-NC)
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd

Smart card cloning is easy!

(GSM SIMs)
Charles Brookson

Charles Brookson 2005

The stages
Scan the SIM to extract IMSI (just read it!) and Ki, the 128 bit key (for COMP128-1 only, so far.) Now put the IMSI and Ki into some card software And then copy it into a new SIM card We now have a cloned SIM
Charles Brookson 2005

First we need to read the SIM


A small reader, connected to a serial port. Home made for $5

Charles Brookson 2005

Then we need to find Ki


We need Ki and IMSI, we can use Simscan from Dejans pages that will break COMP128-1

Charles Brookson 2005

Heres the software


Simscan ready to go.

Charles Brookson 2005

Now scanning the card


Searching for the key

Charles Brookson 2005

Getting there
The result slowly appears (this one looks interesting!)

Charles Brookson 2005

Now we have it!


This was a SIM supplied to delegates at a meeting, Ki is a bit obvious isnt it!

Charles Brookson 2005

Now to create the software


Using some more software from the Internet called KiSsMi we create the software for the card

Charles Brookson 2005

We now need to program the SIM


We use a single chip PIC computer which is in a SIM shaped package (GOLD CARD) We use a smart card programmer (easily bought on the Internet) And then we program up the card.

Charles Brookson 2005

The programmer..
With the card ready to go

Charles Brookson 2005

The software for the programmer


Just load in the software we created with KiSsMi using VxTools

Charles Brookson 2005

And we now have a cloned card


Note: My way is rather long! Many people sell the equipment cheaply Only works with COMP128-1 So now please think about changing to a new algorithm.

Charles Brookson 2005

You might also like