SIPVicious SIP Scanner – VoIP Hacking Security Auditing Tool

Use Netsparker


SIPVicious SIP Scanner is a suite of tools that can be used to audit SIP based VoIP systems. Why the name? Because the tools are not exactly the nicest thing on earth next to a SIP device.

SIPVicious SIP Scanner - VoIP Hacking Security Auditing Tool


Features for SIP Hacking with SIPVicious

It currently consists of five tools:

  • svmap – This is a sip scanner. When launched against ranges of IP address space, it will identify any SIP servers which it finds on the way. Also has the option to scan hosts on ranges of ports.
  • svwar – Identifies working extension lines on a PBX. A working extension is one that can be registered. Also tells you if the extension line requires authentication or not.
  • svcrack – A password cracker making use of digest authentication. It is able to crack passwords on both registrar servers and proxy servers. Current cracking modes are either numeric ranges or words from dictionary files.
  • svreport – Able to manage sessions created by the rest of the tools and export to pdf, xml, csv and plain text.
  • svcrash – Responds to svwar and svcrack SIP messages with a message that causes old versions to crash.

Requirements for SIPVicious

Python is the main requirement, it should work on any system that supports Python 2.6 or greater.

It was tested on the following systems:

  • Linux
  • Mac OS X
  • Windows
  • FreeBSD 6.2
  • Jailbroken iPhone with python installed

There is also:

ohrwurm – RTP Fuzzing Tool (SIP Phones)
SIPcrack – SIP Login Dumper & Hash/Password Cracker
Sipflanker – Locate SIP (VoIP) Device Web Interfaces
SIP Proxy – VoIP Security Testing Tool
Mr.SIP – SIP Attack And Audit Tool

You can download SIPVicious here:

sipvicious-v0.2.8.zip

Or read more here.

Posted in: Hacking Tools

, , , ,


Latest Posts:


Four Year Old libSSH Bug Leaves Servers Wide Open Four Year Old libssh Bug Leaves Servers Wide Open
A fairly serious 4-year old libssh bug has left servers vulnerable to remote compromise, fortunately, the attack surface isn't that big as neither OpenSSH or the GitHub implementation are affected.
CHIPSEC - Platform Security Assessment Framework CHIPSEC – Platform Security Assessment Framework For Firmware Hacking
CHIPSEC is a platform security assessment framework for PCs including hardware, system firmware (BIOS/UEFI), and platform components for firmware hacking.
How To Recover When Your Website Got Hacked How To Recover When Your Website Got Hacked
The array of easily available Hacking Tools out there now is astounding, combined with self-propagating malware, people often come to me when their website got hacked and they don't know what to do, or even where to start.
HTTrack - Website Downloader Copier & Site Ripper Download HTTrack – Website Downloader Copier & Site Ripper Download
HTTrack is a free and easy-to-use offline browser utility which acts as a website downloader and a site ripper for copying websites and downloading them for offline viewing.
sshLooter - Script To Steal SSH Passwords sshLooter – Script To Steal SSH Passwords
sshLooter is a Python script using a PAM module to steal SSH passwords by logging the password and notifying the admin of the script via Telegram when a user logs in.
Intercepter-NG - Android App For Hacking Intercepter-NG – Android App For Hacking
Intercepter-NG is a multi functional network toolkit including an Android app for hacking, the main purpose is to recover interesting data from the network stream and perform different kinds of MiTM attacks.


One Response to SIPVicious SIP Scanner – VoIP Hacking Security Auditing Tool

  1. Rafael Santana de Sousa May 25, 2011 at 7:30 pm #

    Hey, thank you for this site.

    Can I ask you something? A have a site that blocks ‘_’. I found a SQL Injection there. It’s a MySQL 5.1 nut I not able to exploit this because of this damn filter. So i can’t run SELECT schema_name FROM information_schema.schemata; or SELECT table_schema,table_name FROM information_schema.tables WHERE table_schema != ‘mysql’ AND table_schema != ‘information_schema’, etc.

    Do you know any way to bypass this filter?

    Thank you