Intruding 5G SA core networks from outside and inside | PentHertz Blog
Tags
country: Finland
attack-pattern: Data Model Credentials - T1589.001 Hardware - T1592.001 Javascript - T1059.007 Server - T1583.004 Server - T1584.004 Software - T1592.002 Ssh - T1021.004 Trap - T1546.005 Vulnerabilities - T1588.006 Whois - T1596.002 Trap - T1154
Show in Graph
Common Information
Type Value
UUID bd58e131-2e1c-434a-b842-2789e38eb959
Fingerprint b71a5919c93121e1
Analysis status DONE
Considered CTI value 0
Text language
Published Dec. 20, 2021, 8 p.m.
Added to db Jan. 18, 2023, 7:58 p.m.
Last updated Nov. 17, 2024, 6:45 p.m.
Headline Blog
Title Intruding 5G SA core networks from outside and inside | PentHertz Blog
Detected Hints/Tags/Attributes 77/2/17
Source URLs
Redirection Url
Details Source http://penthertz.com/blog/Intruding-5G-core-networks-from-outside-and_inside.html
URL Provider
Details Provider Source level domain
Details penthertz.com penthertz.com
Attributes
Details Type #Events CTI Value
Details Domain 1 
aalto.fi
Details Domain 2 
www.localhost.com
Details Domain 4 
req.body.name
Details Domain 1 
operators.name
Details Domain 46 
ld-linux-x86-64.so
Details File 674 
node.js
Details File 3 
routes.js
Details File 1 
amf_config.json
Details File 15 
private.key
Details File 1 
public.crt
Details File 1 
smf_config.json
Details sha1 1 
08f94b071650da3554e5b95f70e6ba3850ce6318
Details sha1 1 
00c4f4b9e2b8c364e8d6598336d1003324ed76c9
Details IPv4 1 
10.33.1.12
Details Url 1 
https://195.148
Details Url 1 
https://10.33
Details Url 1 
https://10.33.******:9090/oauth2/token"},"discover":{"href":"https://10.33.******:9090/nnrf-disc/v1/nf-instances"},"manage":{"href":"https://10.33.******:9090/v1/nf-instances"},"self":{"href":"https://10.33.1.12:9090/bootstrapping"},"subscribe":{"href":"https://10.33.1.12:9090/nnrf-nfm/v1/subscriptions