Pentest-5GSec provides a comprehensive guide to performing penetration testing on 5G networks, especially in campus environments.
While 5G technology is driving advances in areas such as IoT, autonomous systems, and smart cities, its complex, virtualized, and open architecture also brings new security risks.
The guide describes methods for identifying vulnerabilities in key 5G components such as the Radio Access Network (RAN), Core Network and User Equipment (UE), addressing new threats such as protocol manipulation and denial of service attacks. It also emphasizes the importance of securing innovations such as network slicing and edge computing.
By combining academic research and practical tools, the project provides a valuable resource to ensure the security and resilience of 5G infrastructures to growing threats.
The guide is open source and can be further developed and used. We are happy to accept changes and additions via pull request. The guide is available as a Gitbook.
The identified threats can be integrated into MITRE ATT&CK Workbench via the following repository
This tool is provided for educational and research purpose only. The authors of this project are in no way responsible for any misuse of this tool. We use it to test under NDA agreements with clients and their consents for pentesting purposes and we never encourage to misuse or take responsibility for any damage caused !
These tools must be installed before succesfully running all MobileSniper commands:
This project is licensed under MIT.
The project was developed by AWARE7 GmbH.
