|
|
 |
|
|
|
register |
bbs |
search |
rss |
faq |
about
|
|
|
meet up |
add to del.icio.us |
digg it
|
|
|
|
Cellular telephone phreaking #2
NOTICE: TO ALL CONCERNED Certain text files and messages contained on this site deal with activities and devices which would be in violation of various Federal, State, and local laws if actually carried out or constructed. The webmasters of this site do not advocate the breaking of any law. Our text files and message bases are for informational purposes only. We recommend that you contact your local law enforcement officials before undertaking any project based upon any information obtained from this or any other web site. We do not guarantee that any of the information contained on this system is correct, workable, or factual. We are not responsible for, nor do we assume any liability for, damages resulting from the use of any information on this site.
CELLULAR TELEPHONE PHREAKING PHILE VOL 2 by "The Mad Phone-man"
Some terms you should understand:
Control Channel- The channel the phone and cell base first communicate on.
Reverse Control Ch- The oposite frequency, 45 mhz lower than the control
channel.This is where the mobile unit is.
Voice channel- The channel you are assigned by the switch to commence the
call on after the exchange of suscriber data.
Reverse voice channel- Again 45mhz lower.
Cell Site- The base station that talks to the mobile.
Switch- The computer that places the calls, and takes and recieves data
from the suscriber or from PSTN. (public switched tel netwk)
OK that should get things started. A suscriber picks up his handset to
place a call.
The phone has already been locked onto the strongest control ch in the
area by a computerized scanner in the phone. As he drives thru the service area
the computer constantly picks out the strongest control ch and stays on it,
altho more than one cell site can actualy be heard. The suscriber enters the
number to call on the keypad, and presses the "send" button. At this time the
folowing data is transmitted to the cell sit by the mobile. The callers
electronic serial number (ESN) , his home system number (two digits) his
mobile's area code and phone number, and the number he wants.The cellular
switch now picks up an outgoing line, places the call for him and tells
the mobile to switch to a voice channel. The two ends are linked in the
central switch and violla! A complete phone call, in about 3 seconds.
I have purposely over-simplified the whole process to point out the
moment of truth. The mobile's ESN and phone number and the data in the
switch must match or no go. This is how the billing is figgured out.If
one had the ESN and the mobilephone number, you could call anytine
anyplace without fear of trace, let alone bill. The ideal setup would
let you listen to the reverse control channel, record and display heard
working numbers and ESN's and recall them at your discression to make calls.
This would be tits! Were not quite there yet. But some hard work has
allready been done for us. All the aforementioned codes are sent
in hex, in NRZ code (phancy term for phase shift keying) but the phone
allready has, for example a NRZ receiver and transmitter built rite in.
All that has to be done is to have a receiver on the reverse control
channel, recover the other suscribers data and save it or at least print
it out. The mobile radio data books show some good technical stuff on
the systems used and chip part numbers for the NRZ stuff. I know there
is a mfgr using the lowley 8085 chip for the control head functions,
seems like theres room for xperementin here.
More to come!... "The Mad Phone-man"
|
|
|
To the best of our knowledge, the text on this page may be freely reproduced and distributed.
If you have any questions about this, please check out our Copyright Policy.
totse.com certificate signatures
|
|
|
About | Advertise | Bad Ideas | Community | Contact Us | Copyright Policy | Drugs | Ego | Erotica
FAQ | Fringe | Link to totse.com | Search | Society | Submissions | Technology
|
|
|
|
|
|
