OAT is an Open Source Microsoft OCS Assessment Tool designed to check the password strength of Lync and Microsoft Office Communication Server users. After a password is compromised, OAT demonstrates potential UC attacks that can be performed by legitimate users if proper security controls are not in place. We first wrote about OAT when it […]
voip
VoIP Hopper 2.01 Released – IP Phone VLAN Hopping Tool
VoIP Hopper is a GPLv3 licensed security tool, written in C, that rapidly runs a VLAN Hop into the Voice VLAN on specific ethernet switches. VoIP Hopper does this by mimicking the behavior of an IP Phone, in Cisco, Avaya, and Nortel environments. This requires two important steps in order for the tool to traverse […]
SIPVicious SIP Scanner – VoIP Hacking Security Auditing Tool
SIPVicious SIP Scanner is a suite of tools that can be used to audit SIP based VoIP systems. Why the name? Because the tools are not exactly the nicest thing on earth next to a SIP device. Features for SIP Hacking with SIPVicious It currently consists of five tools: svmap – This is a sip […]
OAT (OCS Assessment Tool) – Office Communication Server Security Assessment Tool
OAT is an Open Source Security tool designed to check the password strength of Microsoft Office Communication Server users. After a password is compromised, OAT demonstrates potential UC attacks that can be performed by legitimate users if proper security controls are not in place. Features Online Dictionary Attack Presence Stealing Contact List Stealing Single User […]
Scammers Using Asterisk VoIP Systems to Make Calls
[ad] It seems like ‘vishing‘ (basically Phishing – but utilising VoIP call services) as it’s known is getting bigger, especially since the scammers have been using a flaw in Asterisk systems that allows them to hijack the VoIP exchange. Older versions of Asterisk do have quite a number of serious flaws and it looks like […]