New version: 1.2.2

Hi! Has anyone been able to review it?

New version: 1.2.6

• Bug fixes
• Added a new script to exploit the SIP Digest Leak vulnerability that affects a large number of hardware and software devices.

Version 1.2.7 released

https://github.com/Pepelux/sippts

@kali-team, please could this be packaged up.
@author, If you want to help the packaging process, you can check the documentation here ~ https://www.kali.org/docs/development/public-packaging

package source at https://github.com/linuxmaniac/sippts

New release 3.0.0 coded in python

• Erased some scripts: sipsniff, sipspy and sipreport
• Renamed script sipcracker to siprcrack
• New script sipenumerate to enumerate available methods of a SIP sevice/server
• New script sipdump to extract SIP Digest authentications from a PCAP file
• New script sipcrack to crack the digest authentications within the SIP protocol

https://github.com/Pepelux/sippts/releases/tag/v3.0.0

Hi. I want to help with packaging, however this tool requires such dependencies:
pyshark
arpspoof
rel
websocket-client

These are not available as packages in the Kali repositories (python3-pyshark, python3-arpspoof, python3-rel, python3-websocket-client)
What should I do?

@pepelux

@wearecaster refer to https://www.kali.org/docs/development/advanced-packaging-example/

You will have to package those dependencies too, then use the appropriate gbp flag to supply those dependencies, while having the Build-Depends mention the package names in your debian/rules.

Do note that you will have to create a ticket for those additional dependencies to be added to the repos.

New version 4.0 available: https://github.com/Pepelux/sippts/releases/tag/v4.0

Now all scripts are unified into one

@wearecaster it has been tested in Kali ... only download from github and execute: pip3 install .

@vseva packed for Kali 2 years ago and nothing happened. It is hard work to package the files and I am not going to repeat it again if it is not going to be integrated into Kali.

@g0tmi1k

I have been trying to get the SIPPTS tool added to Kali for 6 years now. It is not an ego issue and I have no special interest in myself. Nor do I have a financial interest. I know there are many pentesting tools in general, and you can't include all of them, but there is no other free program in Kali that is as complete in auditing VoIP networks. And, in fact, there are no tools in Kali that do the same, so it's not an issue of duplication. Sipvicious is an excellent tool, but the opensource part falls short.

If there is a technical reason that I can fix, I can work on it. If it's not really an option and you don't want to add it, close the request and I won't report anything anymore.

@pepelux, the issue is that the team is working on many things at once, and I am one of the only few I know who volunteer to package tools. I volunteer and package whatever tools I can in my free time.

I understand your frustration, but if you look at the tool addition requests in general, there are dozens of tool additions queued, and I just randomly go through them and package whatever I can. If you wish to speed up the process, take a look at the documentation on how to help out with packaging.

Taking a brief look at sippts, there are 4 Python libraries that will have to be packaged before sippts is packaged.

@pepelux I have drafted a provisional package, but seems like the tool is broken. The contents of the package are as follows:

drwxr-xr-x root/root         0 2024-06-23 12:55 ./
drwxr-xr-x root/root         0 2024-06-23 12:55 ./usr/
drwxr-xr-x root/root         0 2024-06-23 12:55 ./usr/bin/
-rwxr-xr-x root/root     12493 2024-06-23 12:55 ./usr/bin/sippts
drwxr-xr-x root/root         0 2024-06-23 12:55 ./usr/lib/
drwxr-xr-x root/root         0 2024-06-23 12:55 ./usr/lib/python3/
drwxr-xr-x root/root         0 2024-06-23 12:55 ./usr/lib/python3/dist-packages/
drwxr-xr-x root/root         0 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts-4.0.dev0.dist-info/
-rw-r--r-- root/root         7 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts-4.0.dev0.dist-info/INSTALLER
-rw-r--r-- root/root     56149 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts-4.0.dev0.dist-info/METADATA
-rw-r--r-- root/root        92 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts-4.0.dev0.dist-info/WHEEL
-rw-r--r-- root/root         7 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts-4.0.dev0.dist-info/top_level.txt
drwxr-xr-x root/root         0 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts/
-rw-r--r-- root/root     11041 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts/arpspoof.py
drwxr-xr-x root/root         0 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts/data/
-rw-r--r-- root/root     41414 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts/data/cve.csv
drwxr-xr-x root/root         0 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts/lib/
-rw-r--r-- root/root         0 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts/lib/__init__.py
-rw-r--r-- root/root      1210 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts/lib/color.py
-rw-r--r-- root/root     38002 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts/lib/functions.py
-rw-r--r-- root/root      5341 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts/lib/logos.py
-rw-r--r-- root/root     95298 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts/lib/params.py
-rw-r--r-- root/root      2539 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts/rtcpbleed.py
-rw-r--r-- root/root      4262 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts/rtpbleed.py
-rw-r--r-- root/root      3603 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts/rtpbleedflood.py
-rw-r--r-- root/root      4946 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts/rtpbleedinject.py
-rw-r--r-- root/root     14752 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts/sipdigestcrack.py
-rw-r--r-- root/root     25670 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts/sipdigestleak.py
-rw-r--r-- root/root     11720 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts/sipenumerate.py
-rw-r--r-- root/root     14794 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts/sipexten.py
-rw-r--r-- root/root     12156 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts/sipflood.py
-rw-r--r-- root/root     23474 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts/sipinvite.py
-rw-r--r-- root/root      2848 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts/sippcapdump.py
-rw-r--r-- root/root     10536 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts/sipping.py
-rw-r--r-- root/root     19814 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts/siprcrack.py
-rw-r--r-- root/root     29017 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts/sipscan.py
-rw-r--r-- root/root     16481 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts/sipsend.py
-rw-r--r-- root/root     12688 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts/sipsniff.py
-rw-r--r-- root/root      3760 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts/siptshark.py
-rw-r--r-- root/root      6951 2024-06-23 12:55 ./usr/lib/python3/dist-packages/sippts/wssend.py
drwxr-xr-x root/root         0 2024-06-23 12:55 ./usr/share/
drwxr-xr-x root/root         0 2024-06-23 12:55 ./usr/share/doc/
drwxr-xr-x root/root         0 2024-06-23 12:55 ./usr/share/doc/sippts/
-rw-r--r-- root/root       145 2024-06-23 12:55 ./usr/share/doc/sippts/changelog.Debian.gz
-rw-r--r-- root/root      2083 2024-05-15 19:10 ./usr/share/doc/sippts/changelog.gz
-rw-r--r-- root/root      1082 2024-06-23 12:55 ./usr/share/doc/sippts/copyright

When all the dependencies are installed, sippts -h throws this error:

┌──(root㉿faa79509345f)-[~]
└─# sippts -h
Traceback (most recent call last):
  File "/usr/bin/sippts", line 411, in <module>
    main()
  File "/usr/bin/sippts", line 14, in main
    params = get_sippts_args()
             ^^^^^^^^^^^^^^^^^
  File "/usr/lib/python3/dist-packages/sippts/lib/params.py", line 48, in get_sippts_args
    local_cve_version = load_cve_version()
                        ^^^^^^^^^^^^^^^^^^
  File "/usr/lib/python3/dist-packages/sippts/lib/functions.py", line 1137, in load_cve_version
    with open(path) as f:
         ^^^^^^^^^^
FileNotFoundError: [Errno 2] No such file or directory: '/usr/local/lib/python3.11/dist-packages/sippts/data/cve.csv'

Beyond that, despite declaring several dependencies in requirements.txt, you have seem to have missed requests. Please make sure all your dependencies are declared properly and clearly.

Until this issue is solved, sippts cannot be added to Kali. However, the provisional package and its dependencies are available below:

• pythontoolskit: https://gitlab.com/Arszilla/pythontoolskit
• ArpSpoof: https://gitlab.com/Arszilla/arpspoof
• registeredeventlistener: https://gitlab.com/Arszilla/registeredeventlistener
• pyshark: https://gitlab.com/Arszilla/pyshark
• sippts: https://gitlab.com/Arszilla/sippts

@arszilla

I really appreciate the selfless time you spend in packaging and reviewing all the tools. I was just asking if there was any intention to add the tool, if it is useful for Kali, mostly to stop uploading updates and stop insisting. I'm in no hurry, but it's been 6 years since the submit :)

I think the bugs you mentioned are fixed. I don't have experience packaging tools, but on a clean Kali, with a 'pip3 install .' it installs and works correctly.

Anything else let me know and I'll check it out.

Thank you very much.

Translated with DeepL.com (free version)

Please refer to the packaging documentation to understand how the packaging is done:

• https://www.kali.org/docs/development/setting-up-packaging-system/
• https://www.kali.org/docs/development/intro-to-packaging-example
• https://www.kali.org/docs/development/intermediate-packaging-example
• https://www.kali.org/docs/development/advanced-packaging-example

We cannot nor will use pip3 install etc. in any shape or form to build/install a package. This is not the Debian way of packaging tools/libraries etc.

I will check the package again later this week for a new release, so please make sure a release is out.

As mentioned by Arszilla, we are a very small team and we get tons of tool addition requests. We'd like to add as many as we could but it takes time and our effort sometimes needs to focused on other things first.
This tool seems like a great addition for kali, we just never had the time to do it. And it requires extra python dependencies to be packaged.
We greatly appreciate when the tool comes already with the debian packaging files done, that makes it almost ready to be shipped for us, but we understand debian packaging isn't always easy.

In the future, it might be great that users start to use the requested tool addition page to show extra tools that can be installed in kali, with the proper installation command. Because not having the tool in Kali's repository doesn't mean it can't be installed.

This being said, I'll take a look at it and see if I can package it. I've seen that @arszilla already started doing it

You can see all the tools we already have been requested here (there are almos 200)
https://bugs.kali.org/search.php?project_id=1&category_id%5B%5D=New+Tool+Requests&category_id%5B%5D=Queued+Tool+Addition&status%5B%5D=10&status%5B%5D=20&status%5B%5D=30&status%5B%5D=40&status%5B%5D=50&sticky=on&sort=last_updated&dir=DESC&per_page=9999&hide_status=-2&match_type=0

Thank you guys for your work. What you do for Kali is priceless.

I've finished packaging the tool and should be soon ready in kali-rolling. Please test it as I don't know how to use it properly and can't ensure it's working as intended.
You can check the packaged tool here https://gitlab.com/kalilinux/packages/sippts
Don't mind the CI fail in gitlab. That's only caused by the missing newly packaged python dependencies

Hey @daniruiz - I have noticed I had a typo in the copyright of siptts - a z in the Copyright field of Files: debian/*. I've submitted a MR to address it - https://gitlab.com/kalilinux/packages/sippts/-/merge_requests/1

Apologies for the mistake

oh! I didn't see that. Thanks for checking ;)
I'll merge it now

Ahaha, neither did I. I typically review the new packages I do after you guys add them - to ensure that I did not make any mistakes or to see if there was anything changed etc. Noticed it while going over the files quickly on my phone. I'll review the packages thoroughly tomorrow morning, but literally just jumped on to fix that since you're around :)

@pepelux if you are unable to build the package etc. lmk and I'll upload the pre-built packages here for you to test.

@daniruiz I think is all Ok. The only stuff is that it is not updated to the last release 4.0.12. Do you need that I create a new release in Github?

How can I see the latest release? I only see v4.0 in github

I've just created a new release : https://github.com/Pepelux/sippts/releases/tag/v4.0.12

Now I have to package yet another dependency :( python cursor

@daniruiz if you wish, I can take a look at it later today and draft its packaging. let me know and I'll add it to my queue.

thanks @arszilla, I've already uploaded the package update with the new dependency ;)
should be ready soon

@pepelux if you want to test the package you can download these 6 deb packages and in the same folder run 'sudo apt install ./*.deb'

For now I'm closing this task to mark it as done, but feel free to reopen it if any issue is found
https://gitlab.com/kalilinux/packages/sippts