08-09-2017, 03:38 PM
Hi,
This is my SIP authorization request (I replaced some data with test data):
Authorization: Digest username="33333", realm="sip.aaa.it", nonce="1234:d6e8ea03e10d4e39954c0f75e9f1547f", uri="sip
ip.aaa.it", response="7468b74b7257b05671242ad0a8b0eb16", algorithm=MD5
So I want to use SIP digest attack and the sintax should be this:
$sip$*[URI_SERVER]*[URI_CLIENT]*[USERNAME]*[REALM]*[METHOD]*[URI_PREFIX]*[URI_RESOURCE]*[URI_SUFFIX]*[NONCE_SERVER]*[NONCE_CLIENT]*[NONCE_COUNT]*[QOP]*[DIRECTIVE]*[MD5]
So I run this command:
hashcat -m 11400 '$sip$*sipip.aaa.it**33333*sip.aaa.it*REGISTER*sip*sip.aaa.it**1234****MD5*7468b74b7257b05671242ad0a8b0eb16'
But it seems the requests are hanging, what I'm doing wrong?
I have many doubt about uri prefix, uri_resource, nonce client / server.
Someone can help me?
This is my SIP authorization request (I replaced some data with test data):
Authorization: Digest username="33333", realm="sip.aaa.it", nonce="1234:d6e8ea03e10d4e39954c0f75e9f1547f", uri="sip
ip.aaa.it", response="7468b74b7257b05671242ad0a8b0eb16", algorithm=MD5So I want to use SIP digest attack and the sintax should be this:
$sip$*[URI_SERVER]*[URI_CLIENT]*[USERNAME]*[REALM]*[METHOD]*[URI_PREFIX]*[URI_RESOURCE]*[URI_SUFFIX]*[NONCE_SERVER]*[NONCE_CLIENT]*[NONCE_COUNT]*[QOP]*[DIRECTIVE]*[MD5]
So I run this command:
hashcat -m 11400 '$sip$*sip
ip.aaa.it**33333*sip.aaa.it*REGISTER*sip*sip.aaa.it**1234****MD5*7468b74b7257b05671242ad0a8b0eb16'But it seems the requests are hanging, what I'm doing wrong?
I have many doubt about uri prefix, uri_resource, nonce client / server.
Someone can help me?