VoIP security -- Free IP telephony vulnerability test tools: Sniffing and manipulating the packet stream

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT VoIP QoS and VoIP Security Linking VoIP islands: The value of SIP trunking SIP trunking ROI: Linking VoIP islands and more The benefits of linking VoIP islands Mobile IP networks: An overview Tutorial: VoIP ROI VoIP implementation study guide How will VoIP impact the quality of phone calls on our network? How does one cope with echo in a VoIP-enabled network? What's the best way to use an echo canceller? Does implementing VoIP security affect the QoS? How would one handle it, if it does? IBM, Avaya deals signal IP telephony quality control's coming of age Unified Communications Tech Tip Recession generates interest, adoption in video conferencing Winning users over to video conferencing Telepresence is the next best thing to being there Implementing a mobile unified communications (UC) solution Understanding mobile unified communications (UC) products The significance of Avaya's Aura UC buyers should look for SaaS-based UC offerings in 2009 Using the iPhone in the enterprise? Social networking and discussion forums for the enterprise Streaming Cisco's IP Communicator to an HP thin client

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary vishing  (SearchUnifiedCommunications.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary

>

• AuthTool: Attempts to determine a user's password by analyzing SIP signaling traffic.
• Cain & Abel: This is a multipurpose tool that has the capability to reconstruct RTP (voice packet) media calls.
• NetDude: Provides a framework for the inspection, analysis and manipulation of tcpdump trace files.
• Oreka: Recording and retrieval of audio device and VoIP voice streams.
• PSIPDump: Dumps SIP sessions (+RTP traffic, if available) from pcap to disk in a fashion similar to "tcpdump -w" (format is exactly the same), but one file per SIP session (even if there are thousands of concurrent SIP sessions).
• SIPomatic: A SIP listener program that's part of LinPhone. Information is in French.
• SIPv6 Analyzer: An analyzer for SIP and IPv6. Version 0.1.8 adds RTP Viewer Advance mode, which adds UPnP and STUN support to be able to collect the RTP stream behind an NAT.
• VoiPong: A utility that detects all VoIP calls on a path, and for those which are G.711 encoded, dumps actual conversation to separate .wav files. It supports SIP, H323, Cisco's Skinny Client Control Protocol (SCCP), RTP and RTCP. It has been written in C language for performance reasons.
• VoIPong ISO Bootable: Bootable Live-CD version of VoIPong.
• VOMIT: The VOMIT utility converts a Cisco G.711 CODEC IP phone conversation into a .wav file that can be played with ordinary sound players.
• Wireshark: Formerly known as Ethereal, Wireshark is the premier network traffic analyzer. It runs on Windows, Linux, UNIX and other platforms.
• WIST: "Web Interface for SIP Trace," a PHP Web Interface that captures SIP traffic from a remote host (SIP proxy, gateway, etc.) and displays live SIP messages about a specific dialog (filtered by the From SIP user) to help debug SIP transactions.

Tools to change the operation of the voice transmission

• RTP InsertSound V2.0 and V3.0: These tools take the contents of a .wav or tcpdump format file and insert the sound into an active voice conversation. V3.0 requires the libraries found at the Hacking VoIP Exposed site.
• RTP MixSound V2.0 and V3.0: These tools take the contents of a .wav or tcpdump format file and mix the sound into an active voice conversation. V3.0 needs the libraries found at the Hacking VoIP Exposed site.
• RTPProxy: This tool waits for incoming RTP voice packets and sends them to a selected (signaled by a tiny protocol) destination. The information is in Danish.

There are more tools to discuss. The next tip will provide tools for VoIP fuzzing, packet creation and flooding and signaling manipulation. The next tip will also include more tutorials and resources for the VoIP security staff.

About the author:
Gary Audin has more than 40 years of computer, communications and security experience. He has planned, designed, specified, implemented and operated data, LAN and telephone networks. These have included local area, national and international networks, as well as VoIP and IP convergent networks, in the U.S., Canada, Europe, Australia and Asia.

Rate this Tip To rate tips, you must be a member of SearchUnifiedCommunications.com. Register now to start rating these tips. Log in if you are already a member. DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.