Posted on Friday, 22nd October 2010 by Michael

MJSIP version 2.0 Beta: Automating the Magic Jack SIP retrieval

What is MJSIP version 2.0 beta:

After a very successful following our first version and recent changes to how Magic Jack is handling passwords and usernames we have decided to update our script with additional filters and added the ability to find your username as well since it is not always E_number_01.

What is new and why is this called beta:

Though we have tested this on over 40 + jacks from 10/20/2010 to as recently as of today we are have not allowed the general public to try it until now. That is why it is called beta. This version now includes the ability to retrieve your username.

What is required:

MJSIP: Our Perl script. This can be downloaded here: http://www.digitaloffensive.com/mj/mjsip2.zip. If you have our older ne overwrite it with this one.

SIPDump: Magic Jack stores all your SIP information in the programs memory during the startup process. SIPDump is a modified version of MemDump, which was originally developed by Stroth. You can download this tool here: http://www.digitaloffensive.com/mj/mj.rar

Active Perl: This is a free windows port of the Perl interpreter. It can be downloaded her for the 32 bit or 64 bit processor: http://www.activestate.com/activeperl/downloads. Download the msi file and install it, choose all the defaults.

How to use it:

Step 1: Download and extract all your tools to a folder on your system. Working out of one folder will make life so much easier.

Step 2: Use SIPDump.exe to dump the Memory of your Magic Jack. If you need more details on how to do this check out my article on this located here: http://www.digitaloffensive.com/2010/03/hacking-the-magic-jack-in-2010-for-use-on-trixbox-or-any-other-sip-device/

Step3: Out of all the Magic Jack’s we have tested the 3rd dump file was the most reliable at containing the password. I would strongly suggest you do not change that line in the MJSIP.pl file.

Step 4: Open a command prompt and navigate to the folder that you created that has all your tools in it. This folder should also contain you SIPDump files, unless you did not listen to my suggestions above. Once in that folder type the following command “perl mjsip.pl” This should dump your password and username to the screen.

Posted in Code | Comments (9)

9 Responses to “MJSIP version 2.0 Beta: Automating the Magic Jack SIP retrieval”

  1. Craig Says:

    This does not work. I receive the following for both the 3rd and 4th dump.

    C:\magicjack\MagicJack_Utilities>perl mjsip2.pl
    Found one!: Password is 3J3J3J3J3J3J3J3J3J3J
    Found one!: Password is 18446744073709551615
    Enter your 10 digit number to find your username
    and then pres ctrl-z and enter: 786xxxxxx0
    ^Z

    it hangs at 786xxxxxx0 forever then I hit ctrl-z to end the program. Please advise what else can I try?

  2. Kurt Says:

    I have the same problem. But worse yet, I can’t authenticate with the account name that I already know and the passwords found by this program because MJ has some kind of rotating password scheme in place again.

  3. Michael Says:

    Yes we are are aware of the rotating password. This is effecting a majority of not all mj users. This can be seen at http://magickjacksupport.com

  4. Michael Says:

    Over several thousand people use this script 9 out of 10 times it is that you are not using sipdump.exe and that you are not capturing it at the right moment. The username section you enter your 10 digit number press enter hit ctrl Z then press enter again. Do not touch till you get a command line back.

  5. Glenn Says:

    I got the password and username. My problen is with the proxy. The ip to the proxy that I am getting is 74.120.93.68 and I cant seep to find the FQDM.

  6. Michael Says:

    It will not work something changed in the authentication process.

  7. Ross Says:

    Hi all,
    I can not get X-Lite or Asterisk to register for the life of me. I have tried MJMD5 and the program on the PBX itself, but neither Asterisk nor X-Lite will ever register. They just time out with no response. What do I need to do?

  8. Michael Says:

    Please refer to the other posts. MJ has change the authentication mechanism. Though passwords no longer rotate authentication is different.

  9. carlos Says:

    i found my magicjack credentials but with x-lite i get register error , my mj password doesnt change or rotate anyone may help me???

Leave a Reply

*