EnableSecurity
sipvicious
Python

SIPVicious OSS is a VoIP security testing toolset. It helps security teams, QA and developers test SIP-based VoIP systems and applications. This toolset is useful in simulating VoIP hacking attacks against PBX systems especially through identification, scanning, extension enumeration and password cracking.

Last updated Jul 10, 2026
1.1k
Stars
183
Forks
0
Issues
0
Stars/day
Attention Score
94
Language breakdown
Python 87.8%
Roff 8.6%
Shell 2.4%
XSLT 1.2%
โ–ธ Files click to expand
README

Welcome to SIPVicious OSS security tools

SIPVicious mascot

SIPVicious OSS is a set of security tools that can be used to audit SIP based VoIP systems. Specifically, it allows you to find SIP servers, enumerate SIP extensions and finally, crack their password.

To get started read the following:

The GitHub wiki remains the primary home for SIPVicious OSS documentation.

For usage help make use of -h or --help switch.

A note to vendors and service providers

If you are looking for professional VoIP and WebRTC penetration testing services, please check out our offerings at Enable Security.

The tools

The SIPVicious OSS toolset consists of the following tools:

  • svmap
  • svwar
  • svcrack
  • svreport
  • svcrash

svmap

this is a sip scanner. When launched against ranges of ip address space, it will identify any SIP servers which it finds on the way. Also has the option to scan hosts on ranges of ports.

Usage:

svwar

identifies working extension lines on a PBX. A working extension is one that can be registered. Also tells you if the extension line requires authentication or not.

Usage:

svcrack

a password cracker making use of digest authentication. It is able to crack passwords on both registrar servers and proxy servers. Current cracking modes are either numeric ranges or words from dictionary files.

Usage:

IPv6 target syntax

  • svwar and svcrack accept -6 with either a bare IPv6 literal such as 2001:db8::10 or a URI such as udp://[2001:db8::10]:5060.
  • svmap accepts -6 with bare or bracketed IPv6 literals such as 2001:db8::10 or [2001:db8::10].
  • svmap does not accept URI syntax for IPv6 targets. Use -p to choose the destination port, for example sipvicious_svmap -6 -p 5060 [2001:db8::10].

svreport

able to manage sessions created by the rest of the tools and export to pdf, xml, csv and plain text.

Usage:

svcrash

responds to svwar and svcrack SIP messages with a message that causes old versions to crash.

Usage:

Installation

SIPVicious OSS requires Python 3.6 or newer.

Install it from the repository root with:

python3 -m pip install .

This installs the following console scripts:

  • sipvicious_svmap
  • sipvicious_svwar
  • sipvicious_svcrack
  • sipvicious_svreport
  • sipvicious_svcrash
For more installation details, see the installation documentation.

Further information

Check out the wiki for the full documentation set.

๐Ÿ”— More in this category

ยฉ 2026 GitRepoTrend ยท EnableSecurity/sipvicious ยท Updated daily from GitHub