[VOIPSEC] VoIP vulnerabilities summarization
HKaplan at acmepacket.com
Thu Dec 15 14:38:49 GMT 2005
There's also sipsak and sipbomber.
Sipsak is a free tool than can do some parsing checks and simple flood
Sipbomber is a free tool that can do parsing checks of different message
types, and also the full protos suite.
If you have money, Codenomicon is a more complete parser tester than protos.
And Agilent has various attack vector tests available as well.
You can also try basic (free) UDP/TCP attack tools like hgod or pjam, or any
of a bunch of scripts on packetstorm. Just because they don't send SIP
doesn't mean they can't impact the device.
> -----Original Message-----
> From: Voipsec-bounces at voipsa.org [mailto:Voipsec-bounces at voipsa.org] On
> Behalf Of sukery
> Sent: Wednesday, December 14, 2005 10:23 PM
> To: Voipsec at voipsa.org
> Subject: Re: [VOIPSEC] VoIP vulnerabilities summarization
> hi Janne,
> I recommend several tools for sip test: PROTOS(sip test suite), sipp,
> >Hi Sunkey,
> >Thanks for you comments.
> >Please let me know if you can disclose more about your system, we are
> >looking for systems like this for our internal testing.
More information about the Voipsec