SMS Detection only works when opening AIMSICD

[SecUpwN]

Good evening @banjaxbanjo! I'm sorry having to file another important bug report: Our app currently only detects silent SMS and other SMS threats when opening the app. Steps to reproduce this Issue:

1. Send a silent SMS or PING to yoursels via HushSMS as described here
2. Note that HushSMS immediately detects the silent SMS - our app doesn't
3. Open our app, note that it now asks for ROOT permission (should be granted anyway)
4. Once ROOT permission has been granted, the silent SMS gets detected
5. Bug related to the above erroneous detection: Our app Icon vanishes
6. Our app Icon does not come back until AIMSICD gets force closed and restarted

Please verify thsi Issue and see if it is related to using SuperSU! Crosslinking reference to #537.

Want to back this issue? Post a bounty on it! We accept bounties via Bountysource.

[DJaeger]

I can not verify, as the application does not detect any type of silent SMS send by HushSMS for me. Also if the app is opened. I think the detection strings does not work for me, but I couldn't determine the correct one for me until now.

[DJaeger]

Type 0 SMS are shown as normal empty SMS.

WAP push says silent, gets detected by HushSMS. As of the log it seems to get blocked by the BlocklistProvider. But its the same logcat entry like if I really have blocked this number.

[ghost]

@SecUpwN hey sec, I just ran some test with latest build that is up on repo and everything runs smooth but now its not detecting mwi sms, type0 and wap are working on S5. I will look into this today and see whats going on.

Its detecting fine in background for me and automatically opens when an sms is detected.

What version of hush sms are you using because it doesn't detect anything for me on any of my phones.

SU is buggy sometimes and you need to delete app from su and regrant. This happens on a lot of apps when delevloping with android studio.

Uninstall your old version of AIMSICD before installing new one and see is there any difference.

Update

Ok I done some more test it turns out my S5 was buggy for sending type0 & silent sms with my homemade app. Swaped my app over to a more forgiving phone and sent sms to my S5 and here are results (as you can see all working perfect).

Cheers

[E3V3A]

@banjaxbanjo

everything runs smooth but now its not detecting mwi sms, type0 and wap are working on S5. ... more test it turns out my S5 was buggy for sending type0 & silent sms with my homemade app. Swaped my app over to a more forgiving phone and sent sms to my S5...

I'm confused. Is it working or not? It's not working for me... I guess more dev's need to test this and give us feedback here.

[ghost]

@E3V3A its working for me and detects all sms as I showed in the video I linked ye guys.

[E3V3A]

ok, thanks, good to know.

[SecUpwN]

BAAM, I'm back! ;-) Sorry for taking so long folks, I just needed a break.

_[Political content removed by E:V:A]_

Back to this Issue: I am thankful you guys tested this, but its still the same.

[E3V3A]

@SecUpwN can you please keep politics out of our GitHub?

[DJaeger]

@SecUpwN I have to agree with @E3V3A

[SecUpwN]

@SecUpwN can you please keep politics out of our GitHub?

Excuse me, please. I will respect that in the future. It is having a huge impact on my life right now.

@banjaxbanjo, you may have positive test results because you're sending these different SMS with the app you've created yourself. I have just sent you the app I am always testing with. Please give it a try.

[DJaeger]

@SecUpwN: For me AIMSICD also gives not alert when receiving silent sms. I use HushSMS to test.

[E3V3A]

So do I and Hush received the ACK response but AIMSICD never sees it. I think this must be related to other issue about log buffer size etc..

[ghost]

@E3V3A @SecUpwN it makes no difference what app sends these sec and hush has no option for type0 or mwi on any of my devices only wap and the wap you see in the video was sent using hush sms. My S5 detects every type of wap sms hush sends.

The PID & DCS are the only thing that is needed for detection and it doesn't matter what app sends them it all boils down to them bytes.

Samsung phones are more verbose and give alot more info when debugging set to high. Sony Xperia J detects all wap from hush and detects mwi also.

without more logs from other model phones there is nothing more I can do. Detection is based on my logs and if I don't have more logs with unique strings that we know are for mwi type0 etc then its impossible for me to do anything.

Detection has also slowed slightly since putting in the -b main but only by a second or so.

[ghost]

@E3V3A Did you say at one point you feel for the first time that sms detection is working great for you? Did a recent PR change something for your phone now not to detect anything?

[E3V3A]

Exactly

[ghost]

@E3V3A any ideas of what PR changed this? Did you delete aimsicd db and also delete aimsicd from Superuser when installing new AIMSICD

[E3V3A]

@banjaxbanjo I never have to delete anything as I always delete the App before re-installing it. Why do you say we need to delete AIMSICD from SuperSU? And what make you think the old DB is still there after deleting app?

and hush has no option for type0 or mwi on any of my devices

Yes, it does...and I'm using Samsungs...

[ghost]

@E3V3A for some weird reason su doesn't work till you re grand permission for same app only seems to happen when developing though.

Lets say my app asks for root and su grants it now if I make changes to my app in android studio and relaunch root access doesn't work, happened a lot of times when I was creating sms detection with aimsicd also ans as soon as I removed app from su and regranted the action worked at once.

[E3V3A]

@banjaxbanjo Your buffer is 2 times the size of mine! @DJaeger What do you have?

To test on your device, please see this comment. and repeatedly type the buffer info command... I really think we fill the log buffers way too quickly, especially for those of use using Xposed and have hundreds of other apps and bloat running...

[ghost]

Here is what hush gives me

[ghost]

@E3V3A ahhh re-open eva stupid phone

[ghost]

[E3V3A]

@banjaxbanjo So no wonder you get it all, your buffers are 4 times the ones I have! :) Do us a favour. Clear the buffers so they read ~0 Kb consumed. Then do nothing and repeat the command while taking time with a stop-watch to see how long it take your phone to fill the buffers...

Hitting PING button should give you various options for sending Type-0 ping etc...

[E3V3A]

https://github.com/SecUpwN/Android-IMSI-Catcher-Detector/commit/002055d948c387aadf68f4a7f949fcffb8090ee3#commitcomment-12888372

It could also be that regex's can be compiled or evaluated at runtime. A compiled regex is obviously much faster...

[SecUpwN]

@banjaxbanjo and @smarek, would you please have another closer look at this? Thank you guys!

[agilob]

I think this will be closed when the patch I sent you is merged.

[SecUpwN]

I think this will be closed when the patch I sent you will be merged.

Wonderful to hear! Waiting for the pull request of @banjaxbanjo like you mentioned via E-Mail.