What
SIPscan tool
Solution
SIPscan is an network scanner to determine which SIP phones / SIP extensions are alive on a network / PBX.
You can download the tool from:
http://www.hackingvoip.com/sec_tools.html
When you run the tool, you see that it's actually an python script compiled to an .exe. But hey, it works perfectly on my Windows pc.
SIPscan uses an dictionary list for scanning the SIP extensions, With this little commandline code you can create in Windows easily such list yourself. "thisisthecanary" must be always the first entry!
Expl.: (1,1,5), decodes to: (start,step,end)
ECHO thisisthecanary > extensions.txt & FOR /L %i IN (1,1,5) DO ECHO %i >> extensions.txt
Load the list in SIPscan and start scanning your network / PBX.
If youuse the INVITE scan, it's possible that each phone will ring when the packets arrive. Cool :-)
No comments:
Post a Comment