VideoSnarf is a new tool first released with VideoJak 2.0, presented for the first time at DefCon 17.
This tool takes an offline pcap as input and outputs all detected media streams, including first of its kind support for decoding H.264 RTP Video streams. This tool is good for pentesters that want to use other tools like tshark/wireshark and ettercap to capture VoIP/Video traffic but want to decode these streams. VideoSnarf supports G711ulaw, G722, G729, G723, and G726 codecs.
See the VideoSnarf page for more details here.
WARNING: When running VideoJak 2.0 on Ubuntu 9.10, VideoJak crashes (causing a network DoS) when running against Cisco 7985 IP Phones when you select an *.avi file for the attack. Using an H.264 video file will not crash VideoJak. Using an *.avi file with VideoJak 2.0 on Ubuntu 9.04 will not crash the tool. It is highly recommended to not use *.avi files for input when using VideoJak 2.0 on Ubuntu 9.10.
To recover from the DoS attack, run videojak again and press 'q' to exit gracefully without launching any of the attacks.