Comments on: MJSIP: Automating the Magic Jack SIP retrieval

By: Keith

Keith — Sat, 09 Jul 2011 00:08:04 +0000

Does this still work as of the latest version? I’ve created many dumps using different methods but I never find any reference to “ProxyPassword” or any of the other mentioned parameters. Did the folks at MJ kill this? If so, are there other ways of obtaining the password?

By: Frank

Frank — Thu, 02 Jun 2011 14:09:25 +0000

Mike, I don’t know if its outdated now, but I’ve tried the process.

On the outset with SIPDUMP — I get no matching file were found in all sipdump txt files.

Any suggestions?

By: Michael

Michael — Fri, 24 Sep 2010 12:50:17 +0000

Make sure you are using mjmd5.exe or mjproxy as those pieces of software alone will not encrypt the connection the way mj requires hence the failure.

By: Pradeep

Pradeep — Fri, 24 Sep 2010 12:46:34 +0000

I’ve taken most of the bits covered in all the replies, but no luck yet. I tried Blink on my mac, fring and adore softphone on my iphone – all seem to fail due to “authentication failure”. I tried EXXXXX..01 and EXXXX..02, but no luck. Password was taken from the perl script’s output that stood out of 3 others.

By: Nick

Nick — Wed, 15 Sep 2010 15:43:50 +0000

Hi Michael

It look like that Fringe doesn’t like the user name or the Password like you have told me about 20 Char password problem. What other Iphone app is out there that I can try to make this work.

By: Nick

Nick — Wed, 15 Sep 2010 12:19:59 +0000

Thanks Michael

So if the password doesn’t work its because they have role over a new one. And I’ll have to go and do the mjsip.pl over again. Also the passwords are they all suppose to be your MJ phone number. Isn’t that very easy for other to hack to. Sorry if this sounds like a stupid question.

By: Michael

Michael — Tue, 14 Sep 2010 20:51:15 +0000

Only one is right it usually standout like a sore thumb

By: Michael

Michael — Tue, 14 Sep 2010 20:50:49 +0000

The one that repeats the most is usually the password. Case is not important. The issue you may have is fringe cant take a 20 char password unless a recent update fixed that. As far as the proxy that one is fine. Recent updates have made some major changes. Don’t be surprise if your password changes either as that was a issue a few weeks ago for many users.

By: Nick

Nick — Tue, 14 Sep 2010 19:27:40 +0000

SORRY I forgot also do I have to enter all the password to see which one is right or is the last password the good one.

By: Nick

Nick — Tue, 14 Sep 2010 19:26:04 +0000

Hi Michael

First thanks for the info.

Now after following your step by step. I get about 50 passwords in upper case form. When entering the password in fring on my Iphone 4 do I enter them in upper case or lower case. Final I’m using my MJ from Montreal Canada, after getting my proxy name from nslookup. It gave me vms03.dallas1.talk4free.com is that good or not.

Thanks

By: Michael

Michael — Thu, 09 Sep 2010 16:37:17 +0000

Luke,

I just got a droid and what I do is have it use sipdroid and register to my asterisk PBX. That is prob a bit more then you want to do. But you can always host mjmd5.exe on your home computer and open the port you have it listen on to your home computer on your router and use your public IP in the sipdroid settings.

By: Luke

Luke — Thu, 09 Sep 2010 16:09:31 +0000

Thanks for the script and write up. It worked great for me on two magic jacks. I just wish I could get the credentials to work on my Android with sipdroid!

By: Michael

Michael — Thu, 26 Aug 2010 16:46:51 +0000

This is still working as of this morning. I do several magic Jacks a day. If you have at the output please send it to me and I will look. The newer Jacks have added some more trash that I need to filter out I just have not had time to update my code on the site. I update locally as I find new strings to remove. If you send me your output I will add the strings and send it out. Also are you suing the proxy with the credentials, remember having the credentials is not the only thing you need. 99% of people don’t do that and blame my code. Remember this code is offered currently free of charge. I get close to 3k unique visitors a month and over 6k in repeat. But only a few ever support my efforts.

By: coozze

coozze — Thu, 26 Aug 2010 04:45:14 +0000

Is this still working for everyone? i get multiple passwords and none of them work

By: Michael

Michael — Wed, 11 Aug 2010 12:29:08 +0000

Thanks. I use adore softphone on my ipad and iphone. The issue that you mention sounds like you are running the siphone without having a proxy running somewhere else. Many people forget even with the SIP credentials you have to still use a proxy. I suggest running mjmd5.exe on your desktop and testing again.

I hope that helps.

By: Vijay

Vijay — Wed, 11 Aug 2010 06:10:56 +0000

Thanks for your post and I got my password. But when I tried to connect from my iphone via Siphon it says credentils failed. Any suggestions? I configured siphon as per a post where some people got it success.

Thanks!

By: Michael

Michael — Sat, 24 Jul 2010 15:00:16 +0000

Yes but: There is always a but. The SIP info alone will not work you will need to still use a proxy installed somewhere. Either mjproxy on linux and tomatoe based routers or mjmd5.exe on windows boxes.

The second but is you will need a softphone installed on your phone. The issue there is the only one I know of is fring and they do not support 20 char passwords.

By: Rami mizrahi

Rami mizrahi — Sat, 24 Jul 2010 06:51:28 +0000

Hi Michael.
Thank you for your amazing post.
i have one small question.
If i’ll find my MJ info, can i use it on my N95 nokia (symbian OS) ?
Thank you for your time.

Rami.

By: Michael

Michael — Thu, 15 Jul 2010 13:11:16 +0000

If any one find any other information / filters that need to be added to this script please let me know.

By: Michael

Michael — Mon, 12 Jul 2010 12:22:09 +0000

Tim I sent you a email.

By: Tim

Tim — Sat, 10 Jul 2010 19:29:40 +0000

Hello Mike,
Is there a way you contact me through my email
(thien63@msn.com) or call me at 832-373-6908. I have an invention that ready to produce, but I see a better option by using softphone with sip credential. I can pay you or join us as sub-contract to finalize this product. Thanks

By: Michael

Michael — Mon, 14 Jun 2010 14:12:37 +0000

You could do it on the network as well. Though it is not as easy. You would need to be able to do a process listing of the network machine and grab the magic jack PID. You would then need to restart the process and grab the PID again. Once the process is restarted you would need to use a tool that can be configured to dump the memory of the remote machine via PID or have a copy of SipDump running locally on the compromised machine. Even if you did all that it is still a race condition on when the ad loads to to start the dump.

What I do is do a search on your network for SIPDump* and see if any one has created any dumps. Then grab them and dump them to a folder with my script. That will get you the password.

This tool was written more for those that want to get their SIP credentials to plugin into a ATA or PBX of their own and not use the Magic Jack dongle.

By: warezjoe

warezjoe — Mon, 14 Jun 2010 13:54:24 +0000

Great write up Mike. Question for you, It seems that this is a client side vulnerability (risk), is there a way to perform this type of attack on MJs that are present on a USB networked hub or similar configuration?

By: Steve

Steve — Sun, 13 Jun 2010 03:26:54 +0000

great work,thanks for the help for the community.

By: Michael

Michael — Thu, 10 Jun 2010 19:59:28 +0000

Updated code to open “SIPDump3.txt” by default.