How to do SMS Spoofing using iPhone 4 and SendRawPDU Script by Pod2g
Few days ago I wrote you news that famous French hacker Pod2g found exploit in iPhone SMS security which allowed one people to send text messages to others but with wrong address.
To perform this you need to use CLI tool to send raw SMS PDU data to the iPhone 4 baseband. This tool is called sendrawpdu and you can find info about it here because in this article we will talk how to make it works on your iPhone 4.
First you need to compile sendrawpdu file on your iPhone 4 and only then to use it. But before we start you need to comply with the requirements given below:
Note: We are not responsible for those who will use this spoofing method in illegal way. We just sharing our first time experience of using this tool.
Requirements
- Mac OS X 10.6 and higher.
- Xcode 4.0 and higher.
- iosopendev package (you can use this link to download it).
If you don’t have MacOS X and couldn’t compile this script by your own then use download link bellow.
Download Compiled SendRawPDU for iPhone 4 / 4s (link updated)
Now please upload sendrawpdu file to /usr/bin/ directory so the final location would be /usr/bin/sendrawpdu
How to Use Sendrawpdu to Send Spoofing SMS
Note: You must be acquainted with Mobile Terminal or SSH conection between computer and your iPhone.
Step one: open terminal and navigate to the folder where sendrawpdu is located. Then type the next command:
sudo chmod +x sendrawpdu
Now we are ready to lanch this CLI tool and try to send some data.
Step two: Launch this script by typping
./sendrawpdu YOUR PDU DATA
Step three: What PDU data should I put there and what does it looks like? To answer this questions you have to learn some info about SMS technology.
SMS (Short Message Service) is specified by the ETSI (standards GSM 03.401 and 03.382 ). It can contain up to 160 characters, where each character is written according to the 7-bits GSM default alphabet (7 bits default table)
SMS also contains some meta-data
- Info about the senders ( Service center number, sender number)
- Protocol information (Protocol identifier, Data coding scheme)
- Timestamp
There are 2 ways to receive and send SMS messages a, PDU (protocol discription unit) and Text mode. So as you see sendrawpdu is designed to use PDU data for sending text messages. PDU format can be used on any encoding and it is all in the form of hexa-decimal octets or decimal semi-octets.
Here is the example of “How are you” message in PDU:
069110090000F111000C918390831470380000AA0CC8F71D14969741F977FD07
You need Open Source decoder/encoder for PDU so you can easily decode text string into PDU data format.
Update: If you are on Windows PC you can use PDUSpy software and my guide to generate your RAW PDU data
So the final command for sending spoofing text messages would be like:
./sendrawpdu 069110090000F111000C918390831470380000AA0CC8F71D14969741F977FD07
You should see your iPhone 4 baseband has been sending PDU RAW Data:
AT
OK
AT+CMGF=0
OK
AT+CMGS=31
And that’s it. Now you know how to do this. But I advice you to find out if you break the law of your country sending spoofing text messages. It can be illegal. We are not responsible for your following actions.
Update: If you have errors with Send Raw PDU then go and fix it.
Also you can read the article on how to prevent sending spoof SMS. This advice came straight from Apple company. If there are some questions feel free to use comment section below to put them all. Also don’t forget to share this essential info using share buttons bellow.
Tags: how-to, iphone, iPhone 4, iphone hacks
Комментариев: 45 to “How to do SMS Spoofing using iPhone 4 and SendRawPDU Script by Pod2g”
Оставить комментарий
Unlock iPhone
Jailbreak Tools
Hack iPhone
Other Posts at This Category
- Tool for Restoring to iOS without Losing Jailbreak
- iTunes Update: Download iTunes 11.0.3
- iPhone Unlock from Vodafone Australia: Full Life Time Solution!
- Use iBooty To Boot iOS 6.1.3 iPhone Tethered and Keep Jailbreak
- Legally Unlock iPhone Petition for the USA Customers
Does this work on Iphone 4S also?
I am not sure as Pod2g confirmed this working on iPhone only
It works on iPhone4S also. Confirmed by constructing SMS with certain reply value and send it through nokia n900.
Hey, can you have a MobileTerminal tutorial? I can't do it on my iPhone..
I have an iPhone 4 but this not work..
I have :
> AT
> OK
> AT + CMGF = 0
> OK
> AT + CMGS = 31
> ERROR MYPDUDATA
Different carriers will have different ways of dealing with the UDH content. Try to download the PDUspy software. Make sure you enter SMSC and destination address, and message of course. Then convert that string to PDU data and copy it into your ./sendrawpdu command
I am going to update this post with future instructions. Now google for PDU SPY Windows software that can generate the PDU data string
I have an iPhone 4 but this not work..
does not work?
> AT
> OK
> AT + CMGF = 0
> OK
> AT + CMGS = 31
> ERROR m<thepduthingiput>
I did everything you said but it doesn’t work neither (same problem with the “ERROR” message).
I am sure about my SMSC number and I tried on my on phone number with a basic text. Any idea ?
Okay, I got it. I tried with the right SMSC number but… I shouldn't. It's working without it. Thanks anyway for everything above
I pushed another post here: http://www.letsunlockiphone.com/send-raw-pdu-erro…
to solve the sending UDH issue
The download link for the already compiled sendrawpdu doesn't work. It says file not found.
I have an iPhone 4 but this not work..
It works just use PDUSpy with Use SMSC is configured in MS option or use my guide http://www.letsunlockiphone.com/send-raw-pdu-erro…
I have an iPhone 4 but this not work..
I have an iPhone 4 but this not work..
does not work?
> AT
> OK
> AT + CMGF = 0
> OK
> AT + CMGS = 32
> ERROR m<thepduthingiput>
it says 32 instead of 31 now and the smsc is right
use PDUSpy with Use SMSC is configured in MS option
4s?
I can't download the compiled code.
sudo command not found
Don't use sudo
Is iPhone 4s supported?
i have error: 13 permission denied
chmod permission on file are ok…
thks
I can´t even run the file, "No such file or directory"
read step one. you should navigate to the directory where the downloaded SendRawPDU script is located.
Compiled SendRawPDUlink dont work. someone post working link
Download source link has been updated
someone please post the Compiled SendRawPDU file. link not woking
Try now
Thanks for your reply.
I have solved the problem myself but thanks for helping me.
This tool is working and it is awesome!
How ?
I uploaded it to /usr/bin but still no luck. I type in sendrawpdu the data and it gives me a permision denied error. I changed the permissions property of the file to 777 and it gives me a no such file or directory error. I would really appreciate the help. Thanks
Same! Are you using iPhone 4s?
This exploit does not work on iPhone 4S because it has another baseband than iPhone 4 which makes it not work. That´s why the program can´t run and you get the "No such file or directory" error.
i have error: 13 permission denied with iphone 4 baseband 4.11.08
You need to give the file permission to run.
Do it by typing this command: "chmod +x sendrawpdu" or if that doesn´t work: "chmod 777 sendrawpdu".
I hope that helps!
operation not permitted
Does this work on iPhone 4 CDMA baseband 3.0.04?
Thanks for the guide, and this script is owersome.
getting the "2 (No such file or directory)" error when trying this on an iphone 4.. permissions and everything else is working fine… When I execute the code such as "./sendrawpdu" I get the response "Usage: sendrawpdu <pdu Data>", So obviously I try inserting my PDU data. and I get the aformentioned error at the beggining of this post…
i have the same problem
This exploit doesn´t work with iPhone 4S.
What part of "on an iPhone 4" do you not understand? I think you've clearly stated, even irrelevantly to most questions, that this isn't compiled for the iPhone 4s baseband
I have tested successfully with iOS 5.1.1 & lower (today)
Also tested with a pre-carrier release of iOS6 for B-party & spoofing no longer works. This will be fixed in iOS6.
I'm getting "No such file or directory" on my iPhone 4 CDMA (Verizon) with baseband 3.0.04. Any suggestions?
This exploit only works on GSM phones.