Hi folks, just a fast post to point out rtpbreak.
With rtpbreak you can detect, reconstruct and analyze any RTP session. It doesn’t require the presence of RTCP packets and works independently form the used signaling protocol (SIP, H.323, SCCP, …). The input is a sequence of packets, the output is a set of files you can use as input for other tools (wireshark/tshark, sox, grep/awk/cut/cat/sed, …). It supports also wireless (AP_DLT_IEEE802_11) networks. This is a list of scenarios where rtpbreak is a good choice:reconstruct any RTP stream with an unknown or unsupported signaling protocolreconstruct any RTP stream in wireless networks, while doing channel hopping (VoIP activity detector)reconstruct and decode any RTP stream in batch mode (with sox, asterisk, …)reconstruct any already existing RTP streamreorder the packets of any RTP stream for later analysis (with tshark, wireshark, …)build a tiny wireless VoIP tapping system in a single chip Linux unitbuild a complete VoIP tapping system (rtpbreak would be just the RTP dissector module!)This project is released under license GPL version 2.
You’ll find it here. To me, it’s a very nice tool fast and easy to use. Good work Michele !