Sniffer for Skype chats

[spawn]

Hello there,

In Bussiness where I work, i have OpenBSD as firewall and run imspector to IM's

Now , departament of support are using skype to talk with clients, I know that, isn't possible sniffer skype calls, so I have installed an pluggin localy to record conversions.

Someone know an sniffer to skype chats ?

It's possible ?

Any direction is welcome

Regards,

[thorin]

Let me google that for you

[spawn]

I have read some sites , but what I want is a little of experience of friends that can use some tool that work with firewalls



Regards Thorin

@thorin

I know Openfire and I searched for skype plugins and I founded
This : Vipadia - Products - Karaka

You post at forum and ask for suggestion, I think that the site that you suggest to me are for peopleos that not contribute and not know anything about security and *nix systems, and only think "hack hack hack" .

Think carefull about this

Regards

[skinnypuppy]

Spawn: Not sure if this will interest you or not as it only pertained to Skype 3 and 4, though work is being done to get it to work in Windows 7 so...


» Blog Archive » New Skype trojan source version available


This code assumes you have access to the victim pc or a way of distributing it to them. Again, useless on Skype 5.x

[spawn]

Hey men ! thanks for sharing this.
I will read and test it.

I'm searching an something that work as proxy to skype in my firewall machine.
I have login and passwords of skype accounts, but audit all accounts one by one is complicated.

Thanks

[Citruspers]

Wireshark can "listen in" on SIP/VOIP calls, but if skype uses encryption you're probably out of luck.

[skinnypuppy]

@Citruspers

Skype does indeed use encryption, 256 bit AES. The user public keys use 1536 or 2048 bit RSA certificates. I haven't seen any recent developments towards skype pentesting (other than my post above) but know there were issues with it back in the early stage, including Cross Zone scripting and URI security bypass coding.