SIPVicious suite is a set of tools that can be used to audit SIP based VoIP systems. Why the name? Because the tools are not exactly the nicest thing on earth next to a SIP device. And the play on the sound seems to work. As an extra bonus, it rhymes with the name of Sex Pistol’s bass player.
It currently consists of five tools:
- svmap – this is a sip scanner. Lists SIP devices found on an IP range
- svwar – identifies active extensions on a PBX
- svcrack – an online password cracker for SIP PBX
- svreport – manages sessions and exports reports to various formats
- svcrash – attempts to stop unauthorized svwar and svcrack scans
Python – SIPVicious works on any system that supports python 2.4 or greater.
There’s a good blog post covering the new stuff here too, mainly svcrash:
How to crash SIPVicious – introducing svcrash.py
You can download SIPVicious v0.2.6 here:
sipvicious-0.2.6.zip
Great post on the SIPBicious Tool Suite! It's impressive to see the advancements in SIP/VoIP security auditing. As businesses increasingly rely on VoIP for their communication needs, it's crucial to ensure robust security measures are in place. For those seeking VoIP quotations for businesses, let me hear your experiences, Im looking for one too.
ReplyDelete