ORANGEBOXING

Orangeboxing is callwaiting id spoofing. Here I will tell you how and why it works.

How Callwaiting Id Works:

Callwaiting ID is known as Type II caller id. When you subscribe to Caller ID w/ Callwaiting(CIDCW) you will notice that when you recieve callwaiting you will hear a callwaiting beep followed by a shorter, high pitched beep. This beep is known as a CAS tone, and the regular callwaiting beep you usually hear is called a SAS(subscriber alert signal) tone. CAS stands for CPE Alert Signal. CPE stands for Customer Premise Equipment, in other words the equipment that demodulates caller id, such as a caller id box. The CAS tone is what tells the CPE there is a callwaiting call. When the CPE hears the CAS tone it does 2 things. 1st it sends a DTMF "D"(or DTMF "A" in Type III callwaiting deluxe CPEs)over the phone line, and second it mutes the party's handset. The DTMF "D" is an acknowledgement tone, it tells the central office that it is 'OK' to send caller id transmission. It mutes the handset so you can't hear the transmission. The transmission is sent in MDMF CID format at 1200 baud and is FSK binary. The 2 binary tones used in this transmission are 1200hz(1) and 2200hz(0).

Spoofing:

Spoofing is rather easy, simply play a CAS tone (2130+2750hz)and when you hear the CPE chirp back w/ a DTMF "D" tone play the FSK transmission of what you want to spoof. Because I have been unable to find anyone willing to make a program that would spoof CIDCW, i have recorded this wav from the central office, I edited a little bit, i made the SAS tone and CAS tone real clear, but the FSK is pure from my central office. When you play the wav into your phone(make sure the phone your using isnt the one your caller id box is hooked up to, otherwise it will mute your handset and not receive the FSK!!) your caller id box or the person your talking to will have Out of Area, September 9th, 6:46P.M. displayed on the box. Click here for the wav.