Skip to content
Sandro Gauci edited this page Feb 16, 2021 · 4 revisions

SIPVicious Wiki

Clone this wiki locally

The Basics

What is SIPVicious?

SIPVicious suite is a set of tools that can be used to audit SIP based VoIP systems. It currently consists of four tools:

  • svmap - this is a sip scanner. Lists SIP devices found on an IP range
  • svwar - identifies active extensions on a PBX
  • svcrack - an online password cracker for SIP PBX
  • svreport - manages sessions and exports reports to various formats
  • svcrash - attempts to stop unauthorized svwar and svcrack scans



SIPVicious works on any system that with a standard Python 3 interpreter.

Operating System

It has been tested on the following systems and have been found to work well:

  • Linux
  • Mac OS X
  • Windows

Feel free to report any bugs you might encounter.


SIPVicious doesn't have any dependencies as such. Apart from in-built libraries, only svcrash requires an external library:

  • scapy - For crafting queries to crash the SIPVicious toolset.

Rest of the Python libraries used by sipvicious are standard libraries which come pre-installed with a Python 3.x interpreter.


If you're using some Debian based distros like Kali Linux, you will find pre-built packages. To install, just simply type in apt-get install sipvicious.

For other distros, you got 2 options:

  • Installing via git:
    • Clone the repository locally and navigate to the directory:
    git clone
    cd sipvicious/
    • Setup the tool:
    python install
    • If that fails (e.g. due to a bug in setuptools) run this instead:
    pip3 install .
    • Fire-up the scripts one by one:
    sipvicious_svmap --help
    sipvicious_svcrack --help
    sipvicious_svcrash --help
    sipvicious_svwar --help
    sipvicious_svreport --help
  • Installing via pip:
    • Simply using pip install sipvicious should do.

For more info on getting started, head over to the Getting Started section.