[VOIPSEC] "SkypeSkryping" and Google Voice findings by Secure Science
Shawn Merdinger
shawnmer at gmail.com
Mon Apr 13 13:59:41 CDT 2009
On Mon, Apr 13, 2009 at 2:36 PM, nnp <version5 at gmail.com> wrote:
> Hrm, I should be a smartarse more often if it illicits such responses
> ;-)
Ha! Smartarses always welcome, and thanks for the props :)
> Where did you hear about the Scapy/Skype stuff, I had a quick look
> through the source and commit logs and couldn't find anything.
See the Blackhat preso "Silver needle in the Skype" by Philippe Biondi
http://www.blackhat.com/presentations/bh-europe-06/bh-eu-06-biondi/bh-eu-06-biondi-up.pdf
Also, brief mention of importing into Skype made in Scapy v2.0.1 documentation
http://dirk-loss.de/scapy-doc/usage.html
One other harvesting resource I should have mentioned earlier is
searching for the customised per user "SkypeMe" buttons folks can
place on their Webpages. See http://www.skype.com/share/buttons/ The
buttons are interesting as status (online, offline, etc.) are
reflected in the SkypeMe button.
Oh, and the Skype user client search results will also return MySpace
users with Skype in another tab in the results window, leading me to
think there's some social networking site tie-ins to Skype perhaps
worth looking into.
Cheers,
--scm
More information about the Voipsec
mailing list