What is Reddit's opinion of SnoopSnitch?

From 3.5 billion Reddit comments

It's the name of the security firm that Wired interviewed for this article. The app permissions are explained here.

> Come on Sky, that's just a specific brand...

In their defence, a lot of people do know them as Stingrays, myself included. I know it's just a brand, same way "Hoover" is just a brand. Smartphones are also known as iPhones to my mum.

Also, I google Snoopswitch, and all I could find is Snoopsnitch, so I'm guessing that was a typo. Snoopsnitch seems interesting though, and lead me to: gsmmap.org which also seems interesting.

After reading the Sky article, I had a look for software and came across this: https://secupwn.github.io/Android-IMSI-Catcher-Detector/ Any idea how that compares to Snoopsnitch?

There's an android app called Snoop Snitch, and its FOSS. One of its root-less features is the ability to "analyze whether a device's build of Android OS is missing security patches that should be included relative to the device's current security patch level date"

Builds of the app are avalible on the main F-Droid repo, and on the F-Droid Kali repo.

Also here's the site: https://opensource.srlabs.de/projects/snoopsnitch/repository

The app has told me of RCE's that I could've been vulnerable to, and even reported some Priv Esc. It also analyses the hardware to detect if the device is vulnerable or not (i.e. rule out Qualcomm chip vulnerability if there's no Qualcomm chip).

So if you can load an app into it, this'll give you a lot of insight. Good luck and keep us updated!

Granted, things are not always what they seem, but https://srlabs.de which makes SnoopSnitch doesn't look much like the standard definition of a company to me.

That said, of course, this being true for one device and not others makes it... generally not true (but that's not SnoopSnitch's fault), no matter how good the reasons.

I just googled "Detect IMSI Catcher" and came up with this. Early days though. There's also this. :/

here's an article that talks about apps that detect when IMSI catchers could be monitoring you... http://motherboard.vice.com/read/this-app-claims-to-know-when-police-are-using-fake-cell-towers-to-track-you one of the apps is called snoopsnitch.... https://opensource.srlabs.de/projects/snoopsnitch

I've been hearing about various implementions of this ever since the last Chaos Communications Congress had one group give a talk about the SnoopSnitch implementation.

Ref: http://media.ccc.de/browse/congress/2014/31c3_-_6122_-_en_-_saal_1_-_201412271830_-_mobile_self-defense_-_karsten_nohl.html

This SecUpwN seems like a nice, friendly implementation of what SnoopSnitch did that works on even more phones. Seems legit to me. If I used a smart phone I'd try.

I'm not sure how you're defining regular cell phone user. You would need to first have a smartphone. The kind where you can install an app. The real cheap phones that you pay 20 bucks for at wal-mart would definitely not work, because you can't install any apps. I personally use this app: Android IMSI-Catcher detector, but there are others: Snoopsnitch, but you need to root your phone (go into developer mode and overwrite the Android OS with a downloaded ROM file) and have a certain brand of smartphone (one that uses a qualcomm chip) for it to work.

Ah! Thanks for posting this.

Seems better than this one: https://secupwn.github.io/Android-IMSI-Catcher-Detector/

[Edit] you can get the APK from here without having to use the Google Playstore thing.