>From - Sat Mar 02 00:57:24 2024
Received: by 10.11.53.25 with SMTP id b25mr27141cwa;
Thu, 16 Feb 2006 10:22:57 -0800 (PST)
Received: from 62.163.79.245 by g44g2000cwa.googlegroups.com with HTTP;
Thu, 16 Feb 2006 18:22:57 +0000 (UTC)
From: cont..._at_yahoo.co.uk
To: "TSCM-L Professionals List" <TSCM-..._at_googlegroups.com>
Subject: More GSM-test-equipment for sale (R & S CTS55)
Date: Thu, 16 Feb 2006 10:22:57 -0800
Message-ID: <1140114177.427298.173530_at_g44g2000cwa.googlegroups.com>
User-Agent: G2/0.2
X-HTTP-UserAgent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322),gzip(gfe),gzip(gfe)
Mime-Version: 1.0
Content-Type: text/plain
.
I have another second-hand GSM-tester for sale
it's a 3-band Rohde & Schwarz CTS55 with additional
options CTS-B1 and CTS-B7 installed.
As i explained in a previous message the equipment
acts as a GSM-basestation and a GSM-will lock on
to it...then a call can be established in both
directions MS > BS or BS > MS
Various measurements can be made and details
about the phone such as IMEI and IMSI are displayed.
The unit can be programmed to act as any network basestation,
some of the parameters that can be entered are:
MCC (Mobile Country Code)
MNC (Mobile Network Code)
NCC (Network Colour Code)
LAC (Location Area Code)
A received signal level meter is included
RF-channels can be changed
A GSM-signal RF-generator is included
It's remote controllable trough a RS232 port
A keyboard can be connected
A printer can be connected
The CTS55 tester itself contains a standard computer motherboard,
harddisk,lcd-screen...so it seems not to difficult to
do some modifications.
The unit was calibrated in 2003.
More details at Rohde & Schwarz website:
http://tinyurl.com/c7l4r
Apart from these standard measurements it can also be used
for below purposes wich i have figured out myself and wich
are not described by the manufacturer.
A)
Detecting unknown GSM-devices in very little time.
B)
Finding "Spyphones" or "GSM-bugs" (sleeping or active)
this takes just a few seconds...and you can see the
GSM-bug's details on the screen of the tester.
You can keep the connection alive and find that hidden bug
in just a few seconds
C)
Catching (Hijacking) any GSM-phone/module wich will lock
to the equipment and therefore it will not be able to make
real calls anymore on the real network.
D)
Grabbing any phones data such as IMSI,IMEI but also a possible
dialled number..ofcourse that call will not go trough since
the test-equipment does not have a outgoing line
C)
Force phones to go in un-encrypted mode (the CTS55 is non-crypto)
you could then see if the phone displays that fact...wich might
be usefull to find a phone that displays it, or do some SIM-card
experiments to make a phone display that...as a result you could
have a phone that warns you if the real GSM-network has
crypto switched-off or if you are being catched by
a real IMSI-catcher.
C)
Finally with some technical effort you could make an outgoing-line
to it (either manual or automatic) you will then have a real
IMSI-catcher at a fraction of the price of an original IMSI-catcher
(~100 times less)
In order to be able to do above(new)things the unit will need
an additional "range-extender" wich is basicly a 2-way amplifier
it will amplify both transmitted and received signals at the unit.
This is called "Off the air" testing
Normally you should use a antenna-coupler (cradle) or connect the
tester directly to the antenna of the phone-under-test
With a "range-extender" a usefull distance between the tester
and phones can be obtained...depending on power of that
range-extender and the local circumstances i estimate a range of
100~400 meters to be possible...with directional antennas probably
even more.
Such range-extenders are the same as "GSM-repaters" or
"Cell-enhancers" wich are available at reasonable prices (starting
at a few 100 Euro's)
I'll sell this CTS55 also for 2250 Euro's excl transport
The price is good you wont find another CTS55 for that price
New price is 13000 US $ (without options)
You may contact me private
contranl
http://www.tetrascanner.com
http://groups.yahoo.com/group/gsm-scanner
http://groups.yahoo.com/group/traffic-cams
http://groups.yahoo.com/group/iPod-video
http://groups.yahoo.com/group/ICOM-IC-R1500
Received on Sat Mar 02 2024 - 00:57:24 CST