: The software’s most famous (and controversial) use was attempting to extract the International Mobile Subscriber Identity (IMSI) and the Authentication Key (Ki) .
In the early days of GSM networks, SIM cards relied heavily on a cryptographic algorithm known as . This algorithm was responsible for authenticating the subscriber's phone to the cellular network tower. However, COMP128v1 had structural cryptographic flaws that made it susceptible to collision attacks and brute-force extraction.
The complete version identifier for this release is . This distinction is important because users sometimes report inconsistencies in the displayed version number. In some cases, hovering over the executable file may reveal a different internal version (e.g., 1.0.0.1), which is considered normal and likely due to the developer forgetting to update the version metadata before compilation. Woron Scan 1.09
During the version 1.09 release, Woron Scan was a cornerstone of the "SIM Cloning" movement. The Process
| Problem | Likely Cause | Solution | |---------|--------------|----------| | “No hosts found” | Firewall blocking ICMP | Disable Windows Firewall temporarily or use port scan only | | Woron Scan crashes on Windows 10 | Compatibility layer issue | Run as Administrator + Windows XP SP3 compatibility mode | | Scans are too slow | Default thread count low | Increase threads to 50–80 (careful on old routers) | | Results show “filtered” ports | Stateful firewall | Use TCP connect scan (if available) or reduce scan intensity | : The software’s most famous (and controversial) use
Helps identify the necessary data points for creating multi-SIM ("penguins") setups.
By scanning from inside the network, admins can verify firewall rules—ensuring that only intended ports are open. In some cases, hovering over the executable file
Researchers discovered that COMP128v1 had a vulnerability that allowed the "Ki" (the unique authentication key) to be extracted through a "collision attack." By sending thousands of queries to the SIM card and analyzing the responses, Woron Scan could eventually "crack" the Ki. Key Features of Version 1.09
Using tools like comes with significant ethical and legal responsibilities: