Skip to content

lmangani/stenotools

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

14 Commits
README.md
README.md
 
 
stenocurl
stenocurl
 
 
stenofake
stenofake
 
 
stenoraw
stenoraw
 
 

Repository files navigation

stenotools

Dummy Stenographer scripts

📌 STENOCURL

stenocurl is a simple wrapper around curl which:

  • finds where the server is based on the config
  • sets the correct flags to do client and server verification via SSL

Usage

 stenocurl /query -d "port 5060, after 1h ago" --silent --header Steno-Limit-Packets:1  | tshark -r /dev/stdin

 1   0.000000 188.226.157.55 ? 192.168.88.254 SIP 617 Request: OPTIONS sip:[email protected]:5070

📌 STENORAW

stenoraw is a simple wrapper around stenocurl piping our raw data to your preferred PCAP tool

Usage

Match SDP ports from SIP

PORTS=$(sudo stenoraw 'port 5060, after 30m ago' | tshark -r /dev/stdin -T fields -e sip.msg_hdr | grep -i "m=audio" | awk '{print "port " $2 ", "}')

Pipe to Cloudshark or Similar

stenoraw "$PORTS after 30m ago" | curl -X PUT \
    --upload-file - http://cloudshark/api/v1/[token]/upload\?filename=foo.pcap
Pipe to Tshark for analysis and heuristics
stenoraw "$PORTS after 30m ago" | tshark  -q -r /dev/stdin -o rtp.heuristic_rtp:TRUE -z rtp,streams

========================= RTP Streams ========================
    Src IP addr  Port    Dest IP addr  Port       SSRC          Payload  Pkts         Lost   Max Delta(ms)  Max Jitter(ms) Mean Jitter(ms) Problems?
   192.168.65.77 28100  192.168.88.254 10000 0x8B551BEE ITU-T G.711 PCMU  1803     0 (0.0%)          140.05            0.16            0.04
 192.168.88.254 10000    192.168.65.77 28100 0x30EFD930 ITU-T G.711 PCMU  2566     0 (0.0%)           20.38            0.15            0.09
   192.168.65.77 22720  192.168.88.254 10000 0x6CFC3B43 ITU-T G.711 PCMU  3413     0 (0.0%)          140.16            4.22            0.06
 192.168.88.254 10000    192.168.65.77 22720 0x275216CC ITU-T G.711 PCMU  4873     0 (0.0%)           40.32            7.16            0.80
   192.168.65.77 17488  192.168.88.254 10000 0x8B419DD4 ITU-T G.711 PCMU  3899     0 (0.0%)          161.45            8.79            0.46
 192.168.88.254 10000    192.168.65.77 17488 0x1E4B9466 ITU-T G.711 PCMU  5944     0 (0.0%)           20.48            0.15            0.10
   192.168.65.77 19192  192.168.88.254 10000 0x6CDC6B2C ITU-T G.711 PCMU  1330     0 (0.0%)          140.17            0.24            0.08
 192.168.88.254 10000    192.168.65.77 19192 0x5DBB1944 ITU-T G.711 PCMU  1535     0 (0.0%)           20.38            0.13            0.09
   192.168.65.77 30198  192.168.88.254 10000 0x6CDB2223 ITU-T G.711 PCMU   218     0 (0.0%)          139.92            0.25            0.10
 192.168.88.254 10000    192.168.65.77 30198 0x052AD7E6 ITU-T G.711 PCMU   323     0 (0.0%)           40.01            3.51            0.95
   192.168.65.77 31722  192.168.88.254 10000 0x7F243C54 ITU-T G.711 PCMU 13886     0 (0.0%)          140.21     33603952.15        38662.83 X
==============================================================

📌 STENOFAKE

stenofake is a dummy process to replace stenotype for API only executions of stenographer

About

Dummy Stenographer scripts

Topics

scripts stenographer stenoread

Resources

Readme
Activity

Stars

6 stars

Watchers

3 watching

Forks

0 forks
Report repository

Releases

No releases published

Sponsor this project

 
Learn more about GitHub Sponsors

Packages

No packages published

Languages