KellyKeeton dot Com v3.0 reverse engineering life


ShoreTel RTP Traffic

ShoreTel Phone system 8.0 recently put L16/256"Linear Broadband 256kbps" as the default #1 codec to use phone to phone, Howeverthe newest copy of Cain will not identify this as a call - I assume its because ofthe bandwidth used. Now you can change the server to not use this bandwidth and keepon the 128k but for my current classroom material and pentesting this isn't a plausiblecase. I would like cain to auto-magically detect and dump the 256k stream.

Name/ Clock/ Bandwidth/ Description
L16 256/ 16000/ 256 Kbps/ Linear 16-bit Audio 256 Kbps

update: here is the handshake data with info

t=0 0
m=audio 5004 RTP/AVP 110
a=rtpmap:110 LRWB/16000

update2: cain now supports this codec,wireshark get this on the dev I cant find anywhere to request this.

I also put the notes into NetworkObserver


Filed under: Hack Leave a comment
Comments (0) Trackbacks (0)

No comments yet.

Leave a comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.

No trackbacks yet.