[VOIPSEC] SIP traces

[Hendrik Scholz]

Hi!

juanramon.cayon at unavarra.es wrote:
> I'm researching on SIP security and traffic characterization and i wonder
> if anybody does know if there are any real world SIP traffic traces
> available for study and analysis.

Are you looking for specific calls/call cases or traffic dumps
(pcap files) with Gigabytes of data?

The problem with real life traffic in general is that it does
contain private information. We tried to find a solution to help
Anti-SPIT research do analysis of traffic patterns.
If there would be an out-of-the-box tool ala tcpurify to
anonymize traffic it might help.

example: replace usernames with their md5 sum
This would allow for many traffic pattern analysis cases but
would for instance prevent you from detecting enumeration attacks.

A game that I played for a while was approaching Anti-SPIT and
VoIP security vendors and ask them for traffic dumps.
As they market solutions to the problems they should be able
to provide dumps with the problems. You could try the same and
ask for a DVD full of it.

Just my $.02,
 Hendrik

-- 
Hendrik Scholz <hs at 123.org>