README - projectvoip - voip honeypot similar to ssh honeypot, using asterisk as… | |
git clone git://jay.scot/projectvoip.git | |
Log | |
Files | |
Refs | |
README | |
--- | |
README (917B) | |
--- | |
1 | |
2 |> projectvoip | |
3 | |
4 Project VOIP was meant to be a VOIP honeypot, but I haven't had much time | |
5 to develop it, so I am uploading everything I have so far here. Project | |
6 VOIP is based on phorensix v.1 by J. Oquendo / sil @ infiltrated dot | |
7 net. | |
8 | |
9 Phorensix was scripted in bash and logged all information to a series of | |
10 files. Project VOIP is coded in Ruby has been updated to work with the | |
11 latest version of asterisk and also logs all information to a MySQL | |
12 database. | |
13 | |
14 * Logs the following information to a mysql database: | |
15 * IP Address information | |
16 * Peer(s) AS Number | |
17 * Netblock AS Number | |
18 * Netblock Prefix | |
19 * AS Name | |
20 * AS Country | |
21 * AS Domain name | |
22 * ISP Name | |
23 * Number called | |
24 * SIP Agent | |
25 * SIP channel used | |
26 * Traceroute of the IP Address | |
27 * Packet capture of the session (.cap file) | |
28 * Recording of the call (.wav) | |
29 | |
30 usage: | |
31 | |
32 $ apt-get install tshark rubygems mysql-client libmysqlclient-dev | |
33 $ gem install mysql |