5G-IMSI-CATCHERCredential Access

IMSI Catcher / Stingray

Spoof a 2G/3G/LTE base station that downgrades nearby phones; capture IMSI, force-downgrade to 2G for MITM, intercept SMS / calls.

§ Where this technique fits

5G-IMSI-CATCHER is catalogued under the Credential Access tactic of the offensive-security kill-chain. It appears in 1 approved dossier in the registry, typically at step 3 on average.

§ Dossiers chaining this technique

IMSI catcher → force 2G downgrade → SMS / call intercept
Operate a rogue base station in the target area. Phones associate; force fallback to 2G where no mutual auth is required. Intercept SMS OTPs, sniff voice calls, push notifications fail silently.
step 3 / 5

§ What commonly comes next

01
Input Capture
T1056 · Collection
seen 1×

§ Where this technique fits

§ Dossiers chaining this technique

IMSI catcher → force 2G downgrade → SMS / call intercept

§ What commonly comes next