fatcousin
// industry vertical

telecom / 5G SA / mobile carrier signaling

5G SA core AMF/SMF/UPF logs · RAN vendor events · NAS/NGAP decoders · SS7/Diameter/GTP legacy signaling · IMSI catcher detection · lawful intercept audit — when evidence is carrier exports, not handset backups.

tools
12
priority
H
processing
local · in browser

start here · primary tools

ordered. work top-down. the first tool is the suggested entry point for this vertical.

  1. 5g amf access log forensic analyzerdrop 5g amf access log export · parse registration + deregistration + pdu session requests · runs locally
  2. 5g smf session log forensic analyzerdrop 5g smf session log export · parse pdu session lifecycle + qos + dnn mapping · runs locally
  3. ericsson ran event log forensic analyzerdrop ericsson enodeb/gnodeb event export · parse cell + alarm + ue attach timeline · runs locally
  4. imsi catcher stingray pattern detectordrop cellular radio scan + lac/cellid log · detect imsi catcher signatures · runs locally
  5. case report generatorfill in case number · examiner · dates · findings · drop evidence files for auto hash · generates structured forensic report PDF · runs locally

also useful · secondary tools

cross-cutting tools that surface depending on the specific investigation.

  1. 5g ausf auth log forensic analyzerdrop 5g ausf authentication log export · parse 5g-aka + eap + suci handling events · runs locally
  2. 5g xn handover log forensic analyzerdrop xnap handover trace export · parse inter-gnb mobility + failure causes · runs locally
  3. 5g nas message forensic analyzerdrop 5g nas capture · parse registration + pdu session messages · runs locally
  4. ss7 message forensic analyzerdrop ss7 capture · parse tcap + map + camel messages · runs locally
  5. diameter signaling log forensic analyzerdrop diameter capture · parse aaa + s6a + s9 messages · runs locally
  6. lawful intercept x1 x2 x3 log forensic analyzerdrop li export · parse intercept setup + content packets · runs locally
  7. evidence manifest generatordrop evidence files · compute md5 sha1 sha256 · chain of custody manifest · case number · analyst · export pdf and csv · runs locally
// pattern-matched

related tools

tools that the manifest-classifier flagged as plausibly useful here but that aren't in the hand-curated lists above. less editorial weight — scan, don't work top-down.

want deeper telecom coverage?

this vertical is intentionally sparse — deep-moat coverage grows over time. tracked in the forensics rollout.

ready