Skip to content

sipcapture/HEPjack.js

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

32 Commits
README.md
README.md
 
 
hepjack.js
hepjack.js
 
 
package.json
package.json
 
 
script.js
script.js
 
 

Repository files navigation

HEPjack

Elegantly Sniff Forward secrecy TLS SIP to HEP at the source via Frida injected libssl callbacks

  ["*libssl*", ["SSL_read", "SSL_write", "SSL_get_fd", "SSL_get_session","SSL_SESSION_get_id"]]

Sounds interesting? Learn more about Frida

Status:
  • Experimental! Please test & contribute!

Requirements

  • NodeJS 10.x or higher
  • Frida
    • sudo pip install frida

Installation

npm install

Parameters

-p     pid or process to attach to
-S     HEP Server IP/hostname
-P     HEP Server port
-X     SIP X-Header extraction to correlation_id (optional)
-R     LOG Regex extraction to correlation_id (optional)

Usage

hepjack.js -p <process> -S 127.0.0.1 -P 9060

Todo

  • More than SIP
  • More than OpenSSL
  • More than Words

Made by Humans

This Open-Source project is made possible by actual Humans without corporate sponsors, angels or patreons.
If you use this software in production, please consider supporting its development with contributions or donations

Donate

(C) 2008-2021 QXIP BV

About

Elegantly Sniff Forward-Secrecy TLS/SIP to HEP at the source using Frida

sipcapture.org

Topics

tls ssl monitoring injection inject voip rtc hep frida diffie-hellman troubleshooting homer sniff hepic forward-secrecy

Resources

Readme
Activity
Custom properties

Stars

10 stars

Watchers

2 watching

Forks

3 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages