SIMurai is a tool for analyzing the security of SIM cards, interaction with modems, and device behavior on cellular networks.
It allows you to emulate SIM cards, run attack scenarios, simulate malicious behavior, and identify vulnerabilities in modem firmware through fuzzing.
What's inside:
SIM card emulation and LTE network connection via srsRAN
Testing malicious commands: reading data, tracking, sending SMS
Checking device responses to non-standard SIM behavior
Compatibility with firmware emulators (for example, Firmware)
The ability to fuzz modem firmware and search for CVE at the firmware level
A useful tool for testing vulnerabilities of SIM cards and mobile devices in a secure environment.
Key Features
SIMurai is designed to be SIM-compatible for 2G/3G/4G/5G:- File system
- MILENAGE authentication
- Proactive commands
- Control at the TPDU layer
- Response rewriting
- Custom command handling
- Proactive app creation and registration
- JSON file system definition (e.g. ./swsim/data/usim.json)
- Smartphones, via SIMtrace 2 cardem.
- FirmWire, using a custom peripheral.
- any PC/SC-compatible clients, such as srsUE or pySIM.
Components
SIMurai consists of three primary components:- swSIM: SIM card emulator.
- swICC: The underlying implementation of the smart card (ICC).
- swICC-pcsc: A virtual card reader for swICC-based cards. Compatible with the PC/SClite middleware that is used in most default PC/SC daemons (e.g. the debian/ubuntu pcscd package).
See how SIMurai works with pySIM, like any other PC/SC-connected SIM card:
DOWNLOAD
