
UNIFIED COMMUNICATIONS TECH TIP
VoIP security -- Free IP telephony vulnerability test tools: Sniffing and manipulating the packet stream
Gary Audin 04.30.2007
Rating: -4.60- (out of 5)




|
VoIP security tools can help the enterprise's security staff test IP telephony vulnerability. When discussing IP telephony vulnerability test tools, there is always the issue that publicizing information will be considered unethical because it can fall into the hands of potential attackers. However, the tools discussed in this tip are all publicly known. Attackers will use them anyway, and hiding this information from the public ensures that the tools will be more useful to the attackers. The attackers will become reliant on the ignorance of the enterprise security staff if the tools are not known to the public. When the enterprise security staff has access to these tools, they can move forward to mitigate security problems.
How to use this information (disclaimer)
Any tools that attack an enterprise's security will probably cause damage to the operation of VoIP if the tools are used improperly. The links listed below usually have instructions covering the proper use of the tool. Even following the instructions may not eliminate damage or harm. The links are to other sites and are not part of TechTarget, so there is no guarantee that everything will work as expected. The links are for information purposes only.
Below is a list of free tools. No commercial too
To continue reading for free, register below or login
To read more you must become a member of SearchUnifiedCommunications.com
');
// -->

ls are listed. There are many commercial tools on the market that also can be used to attack VoIP components. This tool list is not meant to be exhaustive. There are also other free tools available beyond the list provided. The primary sources for this list are the VoIP Security Alliance and the Web site of "Hacking VoIP Exposed," from authors Dave Endler and Mark Collier. These two sites each have longer lists than are mentioned in this tip. The tools in this tip deal with sniffing/listening to VoIP conversations and manipulating the RTP voice steam of packets.
Tools for sniffing VoIP packet transmissions
Tools to change the operation of the voice transmission
There are more tools to discuss. The next tip will provide tools for VoIP fuzzing, packet creation and flooding and signaling manipulation. The next tip will also include more tutorials and resources for the VoIP security staff.
About the author:
Gary Audin has more than 40 years of computer, communications and security experience. He has planned, designed, specified, implemented and operated data, LAN and telephone networks. These have included local area, national and international networks, as well as VoIP and IP convergent networks, in the U.S., Canada, Europe, Australia and Asia.
 |

|
|
 |
|
 |