Skip to content

Research Update Enhanced src/network-services-pentesting/pen...#1390

Merged
carlospolop merged 50 commits intomasterfrom
research_update_src_network-services-pentesting_pentesting-voip_basic-voip-protocols_sip-session-initiation-protocol_20250908_012724
Sep 30, 2025
Merged

Research Update Enhanced src/network-services-pentesting/pen...#1390
carlospolop merged 50 commits intomasterfrom
research_update_src_network-services-pentesting_pentesting-voip_basic-voip-protocols_sip-session-initiation-protocol_20250908_012724

Conversation

@carlospolop
Copy link
Copy Markdown
Collaborator

@carlospolop carlospolop commented Sep 8, 2025

🤖 Automated Content Update

This PR was automatically generated by the HackTricks News Bot based on a technical blog post.

📝 Source Information

  • Blog URL:
  • Blog Title: Research Update: Enhanced src/network-services-pentesting/pentesting-voip/basic-voip-protocols/sip-session-initiation-protocol.md
  • Suggested Section: Research

🎯 Content Summary

Research Update for src/network-services-pentesting/pentesting-voip/basic-voip-protocols/sip-session-initiation-protocol.md

This PR contains automated research updates including:

  • Latest security vulnerabilities and attack vectors
  • Updated techniques and tools
  • Enhanced explanations and examples
  • Additional references and resources

Generated by: HackTricks Research Agent
Timestamp: 2025-09-08 01:33:23 UTC

This update was generated through automated security research to kee...

🔧 Technical Details

Research update for HackTricks content

🤖 Agent Actions

I’ve read the existing SIP page and the related VoIP content and updated the SIP page to add practical, protocol-focused security content without duplicating the broader attacks that already exist in the main VoIP page.

What I changed and added

  • Fixed small inaccuracies/typos in the INVITE/SDP example (corrected a=rtpmap line) and REGISTER section (formatting and “Authorization” spelling).
  • Added “SIP Security and Pentesting Notes” section with:
    • Fingerprinting and discovery using OPTIONS (including a raw netcat probe and an nmap example).
    • Enumeration behavior notes and hardening tip for Asterisk (alwaysauthreject for chan_sip; notes for PJSIP).
    • Modern digest algorithms note (MD5, MD5-sess, SHA-256, SHA-512/256 per RFC 8760) and an actionable offline-cracking example using hashcat mode 11400 with the expected hash format and command. citeturn0search10turn0search7
    • SIP over TLS (sips) and SIP over WebSockets (RFC 7118) quick notes and what to test. citeturn0search8
    • DoS quick checks with a concrete iptables hashlimit rate-limiting example for UDP/5060.
    • “Recent, relevant CVE” note on Asterisk PJSIP CVE‑2024‑35190 with fixed versions to watch for during assessments. citeturn0search3
    • Focused hardening checklist (TLS/SRTP, digest algo policy, Asterisk-specific flags, topology hiding, disable unused methods/rate limits).
  • Cross-linked to the main VoIP page to avoid duplicating enumeration/attacks already covered there using the HackTricks internal reference block.
  • Added a concise References section (kept to 2 items as requested).

Files modified

  • src/network-services-pentesting/pentesting-voip/basic-voip-protocols/sip-session-initiation-protocol.md

Key sources used

  • RFC 8760 (digest with SHA-256/SHA-512/256). citeturn0search7
  • Asterisk GHSA advisory for CVE‑2024‑35190. citeturn0search3
  • Hashcat wiki (mode 11400 SIP digest auth, MD5). citeturn0search9
  • RFC 7118 (SIP over WebSocket). citeturn0search8

If you want me to also add a short subsection showing how to craft/modify SIP over WebSocket probes or to include an NSE example for sip-enum-users/sip-brute, I can extend the page further while keeping it non-duplicative.

This PR was automatically created by the HackTricks Feed Bot. Please review the changes carefully before merging.

📚 Repository Maintenance

  • MD files processed: 874
  • MD files fixed: 1

All .md files have been checked for proper formatting (headers, includes, etc.).

🗑️ File Cleanup

  • searchindex.js removed: This auto-generated file has been removed to prevent conflicts.

carlospolop and others added 30 commits August 29, 2025 11:56
@carlospolop
Merge branch 'master' of github.com:HackTricks-wiki/hacktricks
a1ae585
@carlospolop
Merge pull request #1331 from HackTricks-wiki/update_DLL_ForwardSideL…
b26177a 
…oading_20250824_182553

DLL ForwardSideLoading
Add content from: SoTap: Lightweight in-app JNI (.so) behavior logger…
83b0844 
… for Andr...

- Remove searchindex.js (auto-generated file)
Add content from: GodFather - Part 1 - A multistage dropper
4bc8a8a 
- Remove searchindex.js (auto-generated file)
Add content from: The Art of PHP: CTF‑born exploits and techniques
07cfe6e 
- Remove searchindex.js (auto-generated file)
Add content from: HTB Eureka: From Actuator HeapDump to SSH, credenti…
f0d2e57 
…al captur...

- Remove searchindex.js (auto-generated file)
Add content from: Advisory – Netskope Client for Windows – Local Priv…
70c2c5d 
…ilege Esc...

- Remove searchindex.js (auto-generated file)
Add content from: SSLPinDetect: Advanced SSL Pinning Detection for An…
b85dfdf 
…droid Sec...

- Remove searchindex.js (auto-generated file)
@carlospolop
Merge pull request #1361 from HackTricks-wiki/update_This_House_is_Ha…
400b46b 
…unted__a_decade_old_RCE_in_the_AIO_20250828_123942

This House is Haunted a decade old RCE in the AION client
@carlospolop
updates
67d704e
@carlospolop
Merge branch 'master' of github.com:HackTricks-wiki/hacktricks
ee674ab
@carlospolop
Drop unwanted changes in deserialization/README.md and av-bypass.md
9729a17
@carlospolop
Update README.md
0799bd9
@Sagar00t
Fix typo: corrected 'HTLM' to 'NTLM'
6e4ac55 
Replaced incorrect reference to 'HTLM' with the correct term 'NTLM'.
@carlospolop
Merge pull request #1375 from HackTricks-wiki/update_SSLPinDetect__Ad…
5e88279 
…vanced_SSL_Pinning_Detection_for_A_20250901_123952

SSLPinDetect Advanced SSL Pinning Detection for Android Secu...
@carlospolop
Merge pull request #1365 from HackTricks-wiki/research_update_src_win…
f6007b4 
…dows-hardening_windows-local-privilege-escalation_juicypotato_20250829_012533

Research Update Enhanced src/windows-hardening/windows-local...
@carlospolop
Merge pull request #1374 from HackTricks-wiki/update_Advisory___Netsk…
525f6d7 
…ope_Client_for_Windows___Local_Pri_20250830_184240

Advisory – Netskope Client for Windows – Local Privilege Esc...
@carlospolop
Merge pull request #1364 from HackTricks-wiki/update_Chasing_the_Silv…
377de87 
…er_Fox__Cat___Mouse_in_Kernel_Shad_20250828_185321

Chasing the Silver Fox Cat & Mouse in Kernel Shadows
@carlospolop
Merge pull request #1373 from HackTricks-wiki/update_HTB_Eureka__From…
f4322c5 
…_Actuator_HeapDump_to_SSH__credent_20250830_182823

HTB Eureka From Actuator HeapDump to SSH, credential capture...
@carlospolop
Merge pull request #1363 from HackTricks-wiki/update_HTB_Sendai__From…
d4cf02b 
…_password_spray_to_gMSA_dump__then_20250828_183418

HTB Sendai From password spray to gMSA dump, then ADCS ESC4 ...
@carlospolop
Merge pull request #1372 from HackTricks-wiki/update_The_Art_of_PHP__…
2a44001 
…CTF_born_exploits_and_techniques_20250830_123618

The Art of PHP CTF‑born exploits and techniques
@carlospolop
Merge pull request #1370 from HackTricks-wiki/update_GodFather_-_Part…
ff6e21e 
…_1_-_A_multistage_dropper_20250829_183210

GodFather - Part 1 - A multistage dropper
@carlospolop
f
f05afa0
@carlospolop
Merge branch 'master' of github.com:HackTricks-wiki/hacktricks
789a2b7
Add content from: Research Update: Enhanced src/windows-hardening/act…
bbd2a4a 
…ive-direc...

- Remove searchindex.js (auto-generated file)
@carlospolop
Merge pull request #1367 from HackTricks-wiki/update_SoTap__Lightweig…
63b0174 
…ht_in-app_JNI___so__behavior_logge_20250829_123609

SoTap Lightweight in-app JNI (.so) behavior logger for Andro...
@carlospolop
Merge branch 'master' of github.com:HackTricks-wiki/hacktricks
3f2d215
Add content from: Demystifying 5G Security: Understanding the Registr…
ae64d3f 
…ation Pro...

- Remove searchindex.js (auto-generated file)
@carlospolop
f
e578644
@carlospolop
Merge branch 'master' of github.com:HackTricks-wiki/hacktricks
08c1d1d
HackTricks News Bot and others added 15 commits September 7, 2025 01:31
Add content from: HTB Environment: Laravel env override (CVE‑2024‑523…
591481a 
…01) → LFM...

- Remove searchindex.js (auto-generated file)
@carlospolop
f
be775b0
@carlospolop
Merge branch 'master' of github.com:HackTricks-wiki/hacktricks
5cdd80f
@carlospolop
Merge branch 'master' of github.com:HackTricks-wiki/hacktricks
b874860
@carlospolop
Merge branch 'master' of github.com:HackTricks-wiki/hacktricks
ae731e5
@carlospolop
Update domain-persistence.md
ede2f7f
@carlospolop
Merge pull request #1386 from HackTricks-wiki/update_Demystifying_5G_…
ec6e40c 
…Security__Understanding_the_Regist_20250905_011652

Demystifying 5G Security Understanding the Registration Prot...
@carlospolop
Merge pull request #1379 from HackTricks-wiki/research_update_src_win…
c862301 
…dows-hardening_active-directory-methodology_ad-certificates_domain-persistence_20250904_012126

Research Update Enhanced src/windows-hardening/active-direct...
@carlospolop
Update laravel.md
9df6b0d
@carlospolop
f
494eaec
@carlospolop
Merge branch 'master' of github.com:HackTricks-wiki/hacktricks
cbcccd6
@carlospolop
Merge pull request #1389 from HackTricks-wiki/update_HTB_Environment_…
25bf097 
…_Laravel_env_override__CVE_2024_52_20250907_012404

HTB Environment Laravel env override (CVE‑2024‑52301) → LFM ...
@carlospolop
Merge pull request #1388 from HackTricks-wiki/update_Build_a_Repeatab…
60bb4b1 
…le_Android_Bug_Bounty_Lab__Emulato_20250905_123731

Build a Repeatable Android Bug Bounty Lab Emulator vs Magisk...
Update searchindex (purged history; keep current)
6eb10b9
Add content from: Research Update: Enhanced src/network-services-pent…
a75a3e0 
…esting/pe...

- Remove searchindex.js (auto-generated file)
@carlospolop
Copy link
Copy Markdown
Collaborator Author

carlospolop commented Sep 8, 2025

🔗 Additional Context

Original Blog Post:

Content Categories: Based on the analysis, this content was categorized under "Research".

Repository Maintenance:

  • MD Files Formatting: 874 files processed (1 files fixed)

Review Notes:

  • This content was automatically processed and may require human review for accuracy
  • Check that the placement within the repository structure is appropriate
  • Verify that all technical details are correct and up-to-date
  • All .md files have been checked for proper formatting (headers, includes, etc.)

Bot Version: HackTricks News Bot v1.0

@github-actions github-actions Bot force-pushed the master branch 4 times, most recently from 4b54ccf to 74cc86a Compare September 8, 2025 06:05
@carlospolop
Copy link
Copy Markdown
Collaborator Author

carlospolop commented Sep 29, 2025

merge

@github-actions github-actions Bot force-pushed the master branch 6 times, most recently from 88a07c5 to 73b307c Compare September 29, 2025 22:21
@carlospolop carlospolop merged commit 835bc3d into master Sep 30, 2025
@carlospolop carlospolop deleted the research_update_src_network-services-pentesting_pentesting-voip_basic-voip-protocols_sip-session-initiation-protocol_20250908_012724 branch September 30, 2025 03:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@carlospolop @Sagar00t