UCSniff is a VoIP & IP Video Security Assessment tool that integrates existing open source software into several useful features, allowing VoIP and IP Video owners and security professionals to rapidly test for the threat of unauthorized VoIP and Video Eavesdropping. Written in C/C++, and available on Linux and Windows, the software is free and available for anyone to download, under the GPLv3 license.

Why?

UCSniff was created as a Proof of Concept demonstration tool and a method of creating awareness around VoIP/UC threats. It can be used by VoIP/UC Administrators to test their own VoIP or Video Infrastructure in a pilot before vulnerabilities are rolled into production. It can also be used by security professionals as a method of convincing IT decision makers that security best practices should be applied to VoIP/UC in the same way that they are applied to other TCP/IP based, client-server applications.

New Features

• Real time VoIP and Video monitoring.
• New codec support, G729, G726, G723.
• GUI version of Windows and Linux.
• TFTP MitM Modification of IP phone settings.
• New VideoSnarf tool – Converts offline RTP pcap file to media file.
• Windows VLAN implementation, for VLAN Hopping in Windows.

Or read more here.

UCSniff is an exciting new VoIP Security Assessment tool that leverages existing open source software into several useful features, allowing VoIP owners and security professionals to rapidly test for the threat of unauthorized VoIP and Video Eavesdropping. Written in C, and initially released for Linux systems, the software is freely available for anyone to download, under the GPLv3 license. Some useful features of UCSniff that have been combined together into a single package:

• Allows targeting of VoIP Users based on Corporate Directory and/or extensions
• Support for automatically recording private IP video conversations
• Automatically re-creates and saves entire voice conversations to a single file that can be played back by media players
• Support for G.722 and G.711 u-law compression codecs
• Support for H.264 Video codec
• Automated VLAN Hop and Discovery support
• A UC Sniffer (VoIP and Video) combined with a MitM re-direction tool
• Monitor Mode
• Sniffs entire conversation if only one phone is in source VLAN

UCSniff was created as a Proof of Concept demonstration tool and a method of creating awareness around VoIP/UC threats. It can be used by VoIP/UC Administrators to test their own VoIP Infrastructure in a pilot before vulnerabilities are rolled into production. It can also be used by security professionals as a method of convincing IT decision makers that security best practices should be applied to VoIP/UC in the same way that they are applied to other TCP/IP based, client-server applications.

You can download UCSniff here:

ucsniff-2.00.tar.gz

Or read more here.

What is VideoJak?

VideoJak is an IP Video security assessment tool that can simulate a proof of concept DoS against a targeted, user-selected video session and IP video phone. VideoJak is the first of its kind security tool that analyzes video codec standards such as H.264.

VideoJak works by first capturing the RTP port used in a video conversation and analyzing the RTP packets, collecting the RTP sequence numbers and timestamp values used between the phones. Then VideoJak creates a custom video payload by changing the sequence numbers and timestamp values used in the original RTP packets between the two phones. After the user selects a targeted phone to attack in an ongoing video session, VideoJak delivers the payload over the learned RTP port against the target. This attack results in severely degraded video and audio quality.

Overview

VideoJak is designed in consideration of todays UC infrastructure implementions in which QoS requirements dictate the separation of data and VoIP/Video into discrete networks or VLANs. VideoJak is a proof of concept security assessment tool that can be used to test video applications. Future versions of the tool will support more exciting features.

Features

• VLAN Discovery (CDP) and VLAN Hop
• Call pattern tracking for SIP and SCCP signaling protocols
• Audio codec (G.711u, G.722) and Video codec (H.263, H.264) support
• Creates custom payload from H.263/H.264 packet capture
• MitM functions and host management
• Allows user to select ongoing video call from a menu
• Allows user to select a targeted IP Phone for DoS within the video session
• Enables the user to send the attack during an active, ongoing video call

You can download VideoJak here:

videojak-1.00.tar.gz

Or read more here.