[TOOL] Oreka VoIP Sniffer

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion

The SecuriTeam alerts list - Free, Accurate, Independent.

Get your security news from a reliable source.
http://www.securiteam.com/mailinglist.html

- - - - - - - - -



Oreka VoIP Sniffer
------------------------------------------------------------------------


SUMMARY



DETAILS

Oreka is a modular and cross-platform system for recording and retrieval
of audio streams. The project currently supports VoIP and sound device
based capture. Recordings metadata can be stored in any mainstream
database. Retrieval of captured sessions is web based.

Oreka currently has the following features:
Recording and storage:
* Record VoIP RTP sessions by passively listening to network packets.
Both sides of a conversation are mixed together and each call is logged as
a separate audio file. When SIP or Cisco Skinny (SCCP) signalling is
detected, the associated metadata is also extracted.
* Record from a standard sound device (e.g. microphone or line input).
Can record multiple channels at the same time. Each recording goes to
separate audio files
* Open plugin architecture for audio capture means that the system is
potentially capable of recording from any audio source.
* Automatic audio segmentation so that continuous audio sources can be
split in separate audio files and easily retrieved later.
* Voice activity detection.
* GSM6.10, A-Law and u-Law compression available in order to save disk
space.
* Recording metadata logged to file and/or any mainstream database
system.

Recordings retrieval can be done using the following criteria (when
available):
* Timestamp
* Recording duration
* Direction (for a telephone call)
* Remote Party (for a telephone call)
* Local Party (for a telephone call)


ADDITIONAL INFORMATION

The information has been provided by <mailto:henri@xxxxxxxxx> Henri
Herscher.
To keep updated with the tool visit the project's homepage at:
<http://oreka.sourceforge.net/> http://oreka.sourceforge.net/



========================================


This bulletin is sent to members of the SecuriTeam mailing list.
To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@xxxxxxxxxxxxxx
In order to subscribe to the mailing list, simply forward this email to: list-subscribe@xxxxxxxxxxxxxx


====================
====================

DISCLAIMER:
The information in this bulletin is provided "AS IS" without warranty of any kind.
In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.