Author: Himanshu Dwivedi
ISBN: 1593271638

VoIP Security Tools
Packet Files
VoIP Security Presentations
Book Updates

VoIP Security Tools:

vnak
vnak combines a number of attacks against multiple protocols (H.323, SIP, and IAX) in to one easy to use tool

H225regreject
H225regreject is a tool is used to disconnect H.323 calls.

IAXHangup
The IAXHangup is a tool is used to disconnect IAX calls.

IAXAuthJack
IAXAuthJack is a tool used to actively perform an authentication downgrade attack and force an endpoint to reveal its password in plaintext over the network.

IAX.Brute
IAX.Brute is a passive dictionary attack tool on IAX's challenge/response authentication method.

RTPInject
RTPInject is a minimal-setup prerequisites attack tool that injects arbitrary audio into established RTP connections.

SIP.Tastic
SIP.Tastic is a passive dictionary attack tool on SIP's digest authentication method.

VSAP
VoIP Security Audit Program.

Configuration Files:

Asterisk Configuration Files

• sip.conf (Chapter 2)
• extentions.conf (Chapter 7)
• iax.conf (Chapter 7)
• sip.conf (Chapter 7)

H.323 Injection Files
H.323 injection files can be used with nemesis, a packet injection tool, for a variety of attacks on H.323 networks.

RTP Injection Files
RTP injection files can be used with nemesis, a packet injection tool, for a variety of attacks on VoIP networks using RTP.

VoIP Security Presentations:

VOIP Security: H.323 and IAX
VoIP security presentation delivered at BlackHat 2007 (Himanshu Dwivedi and Zane Lackey)

Point, Click, RTPInject
VoIP security presentation delivered at BlackHat 2007 (Zane Lackey and Alex Garbutt)

Book Updates:

There are no updates to the book at this time.