May 25, 2010

How To Hack Your MagicJack To Make Calls From Any SIP Enabled Softphone in Windows and Linux Part 1 – Getting Your Magicjack Password

Over the last few days I decided I was going to figure out how to hack my Magicjack so I could make calls using the SIP information no matter where I was without having to carry around my Magicjack USB dongle. Also, I wanted to be able to make calls in Linux and Windows. Before I could do any of that though I needed the SIP information for my Magicjack!
You see, Magicjack is really a simple device that uses the standard SIP protocol to make inbound and outbound calls. If you are not familiar with SIP, here is an explanation from Wikipedia:

The Session Initiation Protocol (SIP) is an IETF-defined signaling protocol, widely used for controlling multimedia communication sessions such as voice and video calls over Internet Protocol (IP). The protocol can be used for creating, modifying and terminating two-party (unicast) or multiparty (multicast) sessions consisting of one or several media streams. The modification can involve changing addresses or ports, inviting more participants, adding or deleting media streams, etc... Other feasible application examples include video conferencing, streaming multimedia distribution, instant messaging, presence information, file transfer and online games.
Since SIP is the standard, in theory you can take the SIP information from Magicjack and use it on any SIP enabled phone. All you need is the correct Proxy info, username and password! That is where things get tricky. Magicjack doesn’t want you having this information, and using it for any other way other than its intended use is a violation of TOS. I accept no liability if you get your account pulled for violating TOS. This post is purely for informational purposes only.
In theory, one could pay $20 per year for their Magicjack service, then use the SIP information to share out their number using a SIP PBX like Asterisk to say… Oh… 30 users or so. Imagine a small business doing this? The savings could be huge! Once again though, it violates TOS so I wouldn’t recommend it.
In order to get your username and password you will need the following:
You will also have to disable autorun on your Windows workstation. I will let you Google that for yourself. The reason you have to do that is because when you plug in your Magicjack dongle, Windows maps it as a USB drive, launches Magicjack, and then unmounts the USB drive. We don’t want it to do that, as timing is everything. After you have autorun disabled do the following:
  1. Unplug your Magicjack
  2. Kill any Magicjack processes
  3. Unzip
  4. Navigate to where you unzipped it, and run SIPDump.exe and enter 4 or 5
  5. Now plugin your Magicjack and manually run MagicJackLoader.exe
  6. When you see the below screen, press OK to start the memory dump process from SIPDump.exe (Note, you have to be fast!)
  7. Let the dump run until you see the following screen:
  8. Go ahead and close out of SIPDump, and you will have several text documents called SIPDump1, SIPDump2 etc. Open Each one that has a file size of 19,000KB or over and do a search for the string SIP.Connection.Refresh with the whole word only option selected.
  9. Hit the search button, and then once more. If there are two selections found, then your password should be within 5-10 lines up or down from the string. The password will be a 20 character password all uppercase usually beginning with the letter B. For example: B6QK1RE4HU7QK8P3ABZB (Made up one)

That is the tricky part. Once you have that, the rest is easy. For example, your username will be the Letter E<YourPhoneNumber>01. The proxy will be proxy01.<yourcity> For example:
    • E619123456701
Tomorrow I will show you how to use this information to use a SIP enabled softphone to make calls in windows without your Magicjack dongle. Then the next day after that, I will show you how to do it in Linux! Stay tuned!
Technorati Tags: ,,,,,

Twitter Delicious Facebook Digg Stumbleupon Favorites More

Design by Free WordPress Themes | Bloggerized by Lasantha - Premium Blogger Themes | stopping spam