Tools, Files and Presentations »
VoIP Security Tools
- vnak
vnak combines a number of attacks against multiple protocols (H.323, SIP, and IAX) in to one easy to use tool - H225regreject
H225regreject is a tool is used to disconnect H.323 calls. - IAXHangup
The IAXHangup is a tool is used to disconnect IAX calls. - IAXAuthJack
IAXAuthJack is a tool used to actively perform an authentication downgrade attack and force an endpoint to reveal its password in plaintext over the network. - IAX.Brute
IAX.Brute is a passive dictionary attack tool on IAX’s challenge/response authentication method. - RTPInject
RTPInject is a minimal-setup prerequisites attack tool that injects arbitrary audio into established RTP connections. - SIP.Tastic
SIP.Tastic is a passive dictionary attack tool on SIP’s digest authentication method. - VSAP
VoIP Security Audit Program.
Configuration Files
- Asterisk Configuration Files
- sip.conf (Chapter 2)
- extentions.conf (Chapter 7)
- iax.conf (Chapter 7)
- sip.conf (Chapter 7)
- H.323 Injection Files
H.323 injection files can be used with nemesis, a packet injection tool, for a variety of attacks on H.323 networks. - RTP Injection Files
RTP injection files can be used with nemesis, a packet injection tool, for a variety of attacks on VoIP networks using RTP.
VoIP Security Presentations
- VOIP Security: H.323 and IAX
VoIP security presentation delivered at BlackHat 2007 (Himanshu Dwivedi and Zane Lackey) - Point, Click, RTPInject
VoIP security presentation delivered at BlackHat 2007 (Zane Lackey and Alex Garbutt)
X
