Skip to main content

SIPVicious suite is a set of tools that can be used to audit SIP based VoIP systems.

Project description

Welcome to SIPVicious OSS security tools

SIPVicious mascot

SIPVicious OSS is a set of security tools that can be used to audit SIP based VoIP systems. Specifically, it allows you to find SIP servers, enumerate SIP extensions and finally, crack their password.

To get started read the following:

For usage help make use of -h or --help switch.

A note to vendors and service providers

If you are looking for a professional grade toolset to test your RTC systems, please consider SIPVicious PRO.

The tools

The SIPVicious OSS toolset consists of the following tools:

  • svmap
  • svwar
  • svcrack
  • svreport
  • svcrash

svmap

this is a sip scanner. When launched against
ranges of ip address space, it will identify any SIP servers 
which it finds on the way. Also has the option to scan hosts 
on ranges of ports.

Usage: <https://github.com/EnableSecurity/sipvicious/wiki/SVMap-Usage>

svwar

identifies working extension lines on a PBX. A working 
extension is one that can be registered. 
Also tells you if the extension line requires authentication or not. 

Usage: <https://github.com/EnableSecurity/sipvicious/wiki/SVWar-Usage>

svcrack

a password cracker making use of digest authentication. 
It is able to crack passwords on both registrar servers and proxy 
servers. Current cracking modes are either numeric ranges or
words from dictionary files.

Usage: <https://github.com/EnableSecurity/sipvicious/wiki/SVCrack-Usage>

svreport

able to manage sessions created by the rest of the tools
and export to pdf, xml, csv and plain text.

Usage: <https://github.com/EnableSecurity/sipvicious/wiki/SVReport-Usage>

svcrash

responds to svwar and svcrack SIP messages with a message that
causes old versions to crash. 

Usage: <https://github.com/EnableSecurity/sipvicious/wiki/SVCrash-FAQ>

Installation

Please refer to the installation documentation.

Further information

Check out the wiki for documentation.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

sipvicious-0.3.4.tar.gz (47.8 kB view details)

Uploaded Source

Built Distribution

sipvicious-0.3.4-py3-none-any.whl (53.9 kB view details)

Uploaded Python 3

File details

Details for the file sipvicious-0.3.4.tar.gz.

File metadata

  • Download URL: sipvicious-0.3.4.tar.gz
  • Upload date:
  • Size: 47.8 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/3.4.1 importlib_metadata/4.4.0 pkginfo/1.7.0 requests/2.25.1 requests-toolbelt/0.9.1 tqdm/4.61.0 CPython/3.9.5

File hashes

Hashes for sipvicious-0.3.4.tar.gz
Algorithm Hash digest
SHA256 6feb26d1d347fae3718b0ce2f88e47cbe1e4380f24d5b3fda356983afc4bd876
MD5 113a00ac11274faf0c41ef8993ebffc8
BLAKE2b-256 4c53b228769dd96ef86e0a557a5957682cd25af7cbc1e2118a7d34cd125b11fd

See more details on using hashes here.

File details

Details for the file sipvicious-0.3.4-py3-none-any.whl.

File metadata

  • Download URL: sipvicious-0.3.4-py3-none-any.whl
  • Upload date:
  • Size: 53.9 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/3.4.1 importlib_metadata/4.4.0 pkginfo/1.7.0 requests/2.25.1 requests-toolbelt/0.9.1 tqdm/4.61.0 CPython/3.9.5

File hashes

Hashes for sipvicious-0.3.4-py3-none-any.whl
Algorithm Hash digest
SHA256 f82cd0c53683f5c0e4230cd473282ab3f13ad4c312dc2623a7f9deb46afe30f5
MD5 516577fd4297138288ba3d3d0e26ade9
BLAKE2b-256 35358d79ce5ff341a4689b62cb0582f58db5b531c960d86ca0ab86733c15e930

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page