Home > Hacking > Server Hacking



Hacking VoIP Exposed

Sort Desciption:

... Policies and Procedures OS Security Supporting Service Security Supporting Service Security (web server ... Google Hacking •Most VoIP devices (phones, servers, etc.) also run Web servers for remote management ...



Content Inside:

Hacking VoIP Exposed David Endler, TippingPoint Mark Collier, SecureLogix Agenda •Introductions •Casing the Establishment •Exploiting the Underlying Network •Exploiting VoIP Applications •Social Threats (SPIT, PHISHING, etc.) Introductions •David Endler, Director of Security Research for TippingPoint, a division of 3Com •Mark Collier, CTO for SecureLogix Corporation Shameless Plug •This presentation includes research for our book coming out in December http://www.hackingvoip.com Introduction -VoIP Security •History has shown that most advances and trends in information technology (e.g. TCP/IP, Wireless 802.11, Web Services, etc.) typically outpace the corresponding realistic security requirements.  VoIP is no different. •As VoIP infrastructure becomes more accessible to the common script kiddie, so will the occurrence of attacks. •The most prevalent threats to VoIP deployments today are the same security threats inherited from the traditional data networking world. VoIP Security Pyramid •VoIP security is built upon the many layers of traditional data security: Slice of VoIP Security Pyramid Toll Fraud, SPIT, Phishing Malformed Messages (fuzzing) INVITE/BYECANCEL Floods CALL Hijacking Call Eavesdropping Call Modificaiton Network Security (IP, UDP , TCP, etc) Physical Security Policies and Procedures OS Security Supporting Service Security Supporting Service Security (web server,  database,  DHCP) (web server,  database,  DHCP) VoIP Protocol and VoIP Protocol and Application Security Application Security Buffer Overflows, Worms, Denial of Service (Crash), Weak Configuration SQL Injection, DHCP resource exhaustion SynFlood, ICMP unreachable, trivial flooding attacks, DDoS, etc. Weak Voicemail Passwords Abuse of Long Distance Privileges Total Call Server Compromise, Reboot, Denial of Service Agenda •Int ...

Source: www.hackingvoip.com


add to Google Reader add to Google Bookmark add to bloglines add to newsgator add to FURL add to digg add to webnews add to Netscape add to Yahoo MyWeb add to spurl.net add to diigo Bookmark newsvine Bookmark del.icio.us Bookmark @ SIMPIFY Bookmark MISTER WONG Bookmark Linkarena Bookmark icio.de Bookmark oneview Bookmark folkd.com Bookmark yigg.de Bookmark reddit Bookmark StumbleUpon Bookmark Slashdot Bookmark blinklist Bookmark technorati add to blogmarks add to blinkbits add to ma.gnolia add to smarking.com add to netvouz add to co.mments add to Connotea add to de.lirio.us
Search Terms:

 

Related Files

Vlandriks Ultimate Guide - Hacking Source Forum

Filed under: Hacking and Server Hacking
Sideshow ( Log Out ) Options Aug 13 2006, 08:54 PM My Controls · View New Posts · My Assistant Hacking Source Forum » World of Warcraft » World of Warcraft Server Emulation Vlandriks Ultimate Guide ...

Hacking Techniques

Filed under: Hacking and Server Hacking
Hacking Techniques. Network based System Hacking. Web Server Hacking. Physically enter the Target Building. WLAN (Wireless LAN) Hacking ...

Web Hacking

Filed under: Hacking and Server Hacking
This labs focus will in be web server hacking. Web server hacking refers to attackers. taking advantage of vulnerabilities inherent to the web server ...

Hacking SQL Server

Filed under: Hacking and Server Hacking
Hacking / Hacking Exposed Windows Server 2003: Windows Security Secrets & Solutions / Scambray ...... some of the tools of the trade in SQL Server hacking. ...

Real Time Hacking : ISA Server

Filed under: Hacking and Server Hacking
This case study is entirely based on my hacking experiences with Microsoft ISA Servers.It gives you. people with the way to get related to the ISA server ...