SIPVicious suite is a set of tools that can be used to audit SIP based VoIP systems.

These details have not been verified by PyPI

Project links

Project description

Welcome to SIPVicious OSS security tools

SIPVicious mascot

SIPVicious OSS is a set of security tools that can be used to audit SIP based VoIP systems. Specifically, it allows you to find SIP servers, enumerate SIP extensions and finally, crack their password.

To get started read the following:

Getting started on the Wiki
Communication Breakdown blog: Attacking a real VoIP System with SIPVicious OSS.

For usage help make use of -h or --help switch.

A note to vendors and service providers

If you are looking for a professional grade toolset to test your RTC systems, please consider SIPVicious PRO.

The tools

The SIPVicious OSS toolset consists of the following tools:

svmap
svwar
svcrack
svreport
svcrash

svmap

this is a sip scanner. When launched against
ranges of ip address space, it will identify any SIP servers 
which it finds on the way. Also has the option to scan hosts 
on ranges of ports.

Usage: <https://github.com/EnableSecurity/sipvicious/wiki/SVMap-Usage>

svwar

identifies working extension lines on a PBX. A working 
extension is one that can be registered. 
Also tells you if the extension line requires authentication or not. 

Usage: <https://github.com/EnableSecurity/sipvicious/wiki/SVWar-Usage>

svcrack

a password cracker making use of digest authentication. 
It is able to crack passwords on both registrar servers and proxy 
servers. Current cracking modes are either numeric ranges or
words from dictionary files.

Usage: <https://github.com/EnableSecurity/sipvicious/wiki/SVCrack-Usage>

svreport

able to manage sessions created by the rest of the tools
and export to pdf, xml, csv and plain text.

Usage: <https://github.com/EnableSecurity/sipvicious/wiki/SVReport-Usage>

svcrash

responds to svwar and svcrack SIP messages with a message that
causes old versions to crash. 

Usage: <https://github.com/EnableSecurity/sipvicious/wiki/SVCrash-FAQ>

Installation

Please refer to the installation documentation.

Further information

Check out the wiki for documentation.

Project details

These details have not been verified by PyPI

Project links

Release history Release notifications | RSS feed

This version

0.3.4

Jun 2, 2021

0.3.3

Mar 25, 2021

0.3.2

Mar 3, 2021

0.3.0

Mar 10, 2020

0.2.8

Mar 10, 2020

0.2.3

Jun 8, 2008

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

sipvicious-0.3.4.tar.gz (47.8 kB view hashes)

Uploaded Jun 2, 2021 Source

Built Distribution

sipvicious-0.3.4-py3-none-any.whl (53.9 kB view hashes)

Uploaded Jun 2, 2021 Python 3

Hashes for sipvicious-0.3.4.tar.gz

Hashes for sipvicious-0.3.4.tar.gz
Algorithm	Hash digest
SHA256	`6feb26d1d347fae3718b0ce2f88e47cbe1e4380f24d5b3fda356983afc4bd876`
MD5	`113a00ac11274faf0c41ef8993ebffc8`
BLAKE2b-256	`4c53b228769dd96ef86e0a557a5957682cd25af7cbc1e2118a7d34cd125b11fd`

Hashes for sipvicious-0.3.4-py3-none-any.whl

Hashes for sipvicious-0.3.4-py3-none-any.whl
Algorithm	Hash digest
SHA256	`f82cd0c53683f5c0e4230cd473282ab3f13ad4c312dc2623a7f9deb46afe30f5`
MD5	`516577fd4297138288ba3d3d0e26ade9`
BLAKE2b-256	`35358d79ce5ff341a4689b62cb0582f58db5b531c960d86ca0ab86733c15e930`