[VOIPSEC] voipscanner.com in beta - SaaS VoIP Security Scanning
Dustin D. Trammell
dtrammell at breakingpoint.com
Tue Apr 7 10:32:20 CDT 2009
On Tue, 2009-04-07 at 16:34 +0200, Sandro Gauci wrote:
> Wanted to let you know that voipscanner.com is now in beta stage. From
> the website:
>
> "VOIPSCANNER.COM makes scanning your public facing IP PBX for security
> holes easier than ever. No need for desktop applications or any
> software installation, just enter the IP address of your IP PBX and
> you will receive a report of what attackers out there might find about
> your IP PBX."
>
> If you're interested in giving it a try visit:
> http://beta.voipscanner.com/voipscanner/default/apply
Waiting for my "beta code" now. How do you determine that I am not an
"evil entity"?
I.e., what prevents me, as an attacker, using this service to scan
someone else's PBX to do my reconnaissance for me? How shall I be
restricted to IP space that I'm authorized to scan, and how is this
determined?
--
Dustin D. Trammell
Security Researcher
BreakingPoint Systems, Inc.
More information about the Voipsec
mailing list