-
Notifications
You must be signed in to change notification settings - Fork 26
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Renaming file with meaningful name. Updating README.md accordingly
- Loading branch information
1 parent
d3d9025
commit fd5535b
Showing
3 changed files
with
18 additions
and
19 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1,11 +1,13 @@ | ||
| CFLAGS=-g -Os -Wall -Werror | ||
|
|
||
| all: srtp.o srtp-decrypt.o | ||
| $(CC) -o srtp-decrypt srtp-decrypt.o srtp.o -lpcap -lgcrypt | ||
| all: srtp.o srtp-util.o | ||
| $(CC) -o srtp-util srtp-util.o srtp.o -lpcap -lgcrypt | ||
|
|
||
| clean: | ||
| rm -rf srtp-decrypt *.o | ||
| rm -rf srtp-util *.o | ||
|
|
||
| check: | ||
| ./srtp-decrypt -k aSBrbm93IGFsbCB5b3VyIGxpdHRsZSBzZWNyZXRz < ./marseillaise-srtp.pcap | text2pcap -t "%M:%S." -u 10000,10000 - - > ./marseillaise-rtp.pcap | ||
| ./srtp-decrypt -E -k aSBrbm93IGFsbCB5b3VyIGxpdHRsZSBzZWNyZXRz < ./marseillaise-rtp.pcap | text2pcap -t "%M:%S." -u 10000,10000 - - > ./marseillaise-srtp-new.pcap | ||
| # Decrypt the pcap | ||
| ./srtp-util -k aSBrbm93IGFsbCB5b3VyIGxpdHRsZSBzZWNyZXRz < ./marseillaise-srtp.pcap | text2pcap -t "%M:%S." -u 10000,10000 - - > ./marseillaise-rtp.pcap | ||
| # Encrypt already decrypted pcap | ||
| ./srtp-util -E -k aSBrbm93IGFsbCB5b3VyIGxpdHRsZSBzZWNyZXRz < ./marseillaise-rtp.pcap | text2pcap -t "%M:%S." -u 10000,10000 - - > ./marseillaise-srtp-new.pcap |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1,20 +1,17 @@ | ||
| srtp-decrypt | ||
| ============ | ||
| ## srtp-util | ||
| srtp-util is a tool that deciphers SRTP / ciphers RTP packets contained in a network capture. It needs the Master Key | ||
| exchanged by other means to do its job. The output is dumped in such a way that output can be fed to text2pcap, to recreate a pcap. | ||
|
|
||
| srtp-decrypt is a tool that deciphers SRTP packets contained in a network capture. It needs the Master Key exchanged by other means to do its job. | ||
| Deciphered RTP is dumped in such a way that output can be fed to text2pcap, to recreate a deciphered capture. | ||
| _Refer Makefile for usage example_ | ||
|
|
||
| dependencies | ||
| ============ | ||
| ## dependencies | ||
| SRTP part has been taken from VLC project. It depends on `libgcrypt` for ciphering and MAC. | ||
| Pcap processing is based on `libpcap`. | ||
|
|
||
| SRTP part has been taken from VLC project. It depends on libgcrypt for ciphering and MAC. | ||
| Pcap processing is based on libpcap. | ||
| Typically, on Debian, | ||
| `# apt-get install libpcap-dev libgcrypt-dev.` | ||
|
|
||
| Typically, on Debian, # apt-get install libpcap-dev libgcrypt-dev. | ||
|
|
||
| caveats | ||
| ======= | ||
|
|
||
| Isolating a single RTP flow from a network capture is a hard job, too hard to be done in this tool. Hence, srtp-decrypt expects to process a single RTP flow. | ||
| ## caveats | ||
| Isolating a single RTP flow from a network capture is a hard job, too hard to be done in this tool. Hence, srtp-util expects to process a single RTP flow. | ||
| Network capture shall not contain ICMP, ARP or reverse RTP flow for example, as those packets will not be deciphered correctly by the tool. | ||
| Moreover, RTP offset in frames is expected to be constant, by default 42, but can be set to 46 in case of 802.1q tagging. |
File renamed without changes.