sstt stands for sip security test tool, a tool to test defects in sip implementations
- Open simple test mode, set "HelpClass.debug_flag = false".
- Open advance test mode, set "HelpClass.debug_flag = true".
- Generate multiple report file, set "HelpClass.single_log__flag = false".
- Generate single report file, set "HelpClass.single_log__flag = true".
- Use SSTT generated test file, set "HelpClass.messaeg_flag = true".
- Use customised test file, set "HelpClass.messaeg_flag = false".
- Change timeout for connection, set "HelpClass.time_out = timeout_value".
- Change number of flooding messages, set "HelpClass.num_flood_invite = number", "HelpClass.num_flood_register = number" and "HelpClass.num_flood_spam = number".
v.3.0
- Finish suggestion file and security report
- Fix 4 spelling mistakes in console result
- Fix a bug in REGISTER message in SIP_Auth_Reg.java
- Change help.txt to Release.txt
- Add Readme.txt
- Change pass and failed notation in results
- Fix 6 spelling mistakes in html report
- Fix a bug in timeout setting
v.2.9
- Creat IP address pool for the source of SIP spam
- Finish SIP spam attack test
- Rearrange the SIP spam and DoS attack, since DoS has possiblity to bring down proxy and UA.
- Fix a bug in DoS:INVITE flooding message
- Fix a bug on test number in SIP_Syntax class
v.2.9 beta
- Clean and add date notation for each class
- Change Cseq field generation in INVITE message
- Finish DoS sub test cases (2)
- Fix a bug in TCP authentication REGISTER
- Fix a bug in UDP SIP_Syntax test
- Change path parameter for each Message class
v.2.8
- Fix a bug on TLS on TCP test and REGISTER message generator
- Fix a bug on CANCEL/BYE message (have to use the same Cseq field)
- Finish No.SIPA031/2 Tear Down Session Attack Test
v.2.8 beta Demo
- Using .txt instead of .rtf to get rid of extra letter mark in rich text file
- TestFile still using .rtf for good format
- Finish No.SIPA021/2 INVITE request spoofring attack
- In order to solve "500 out of order error" for REGISTER, Use time related plus static increase variable to make CSeq for REGISTER
v.2.7
- Finish No.SIPA011/2 Replay Attack
- Fix a single report bug
- Fix a print mistake
- Change INVITE message generator (add 2 premeter: ContactAddress&ContactURL)
v.2.7 beta
- Finish No.SIPA001/2 Registration Hijacking
- Add SIPI011-2 Test stateful or stateless proxy server
- Change suggestion generator; suggestion can be customized. Local at /SuggestionFile
v.2.6
- Generate HTML Report - rewrite logwriter -
- Fix sometime cannot receive message
- Suppport BYE message
- Finish SIPVXXX test case
v.2.5
- Fix the problem of timeout some time
- Add server connection test using OPTIONS
- Finish CANCEL (don't work) - branchID, call-ID, tag must be same