Hey, Jason Ostrom here.  VIPER is going to be out at InfoSecurity Europe 2010, speaking on UC Security (Earls Court, London, UK).  The title of our talk, “UC Security:  A Case Study Analysis”, will focus on a few case studies of some successful security assessments we’ve performed working closely with customers.  We will discuss some discovered vulnerabilities and security practices we’ve seen.  Also, we will be presenting a new potential research finding that has to do with SIP TLS enabled VoIP applications.  I’m excited to be out here and participating.  It looks like a good event.  Come join us.  Talk soon.

On Saturday, October 24th, 2009, VIPER Lab will be speaking at the  ToorCon 11 security conference in San Diego.  The title of our talk is “IP Video Attacks!”  In this talk, we’ll be exploring some tools and methods for next-generation attacks against video applications that run on top of IP networks.  This is a follow on and extension to our previous talk at DefCon.  Some of the key new advances that we have come up with:

* Realtime Video Monitoring:  We can now intercept and play ( in near realtime ) both audio and video through the UCSniff GUI

* Improved codec support:  Our tools now support G729, G726, and G723 codecs

* SIP Video Eavesdropping:  We’ve extended eavesdropping support to both SIP and Skinny signaling

For more details on our talk, see the ToorCon abstract:

http://sandiego.toorcon.org/index.php?option=com_content&task=view&id=16&Itemid=9

VideoJak and UCSniff can now be followed on Twitter.  Check out the pages for both of them:

http://twitter.com/ucsniff

http://twitter.com/videojak

Finally, here is a little teaser for the look and feel of the new UCSniff 3.0 GUI, with first of its kind Realtime Video Monitoring support:

VIPER Lab will be speaking at the DefCon 17 security conference in Las Vegas on July 31st – August 1st.  The title of our talk is “Advancing Video Application Attacks with Video Interception, Recording, and Replay.” In this talk, we’ll be exploring some tools and methods for next-generation attacks against video applications that run on top of IP networks.  This is getting interesting.  2009 was declared as the year of IP Video.  Many enterprises are rolling out video applications, but most of the time security is an afterthought with these rollouts.  We’re trying to create the education and awareness here of new video attack paths that can happen.  With these new tools, VoIP owners and security professionals can test the security of their networks, in order to understand these risks, and make a decision as to whether it’s a risk they are willing to accept, or apply the requisite security controls.  Along the way in developing these new tools, we have found a couple of new video applications that are being used for businesses in real-world examples.   For more details on our talk, see the DefCon abstract:

https://www.defcon.org/html/defcon-17/dc-17-speakers.html#Ostrom

In this talk, for the first time, we’ll be unveiling UCSniff IP Video eavesdropping to the world.  UCSniff is the first security tool that can test the security of an IP network for video eavesdropping and reconstruction of video media into an AVI file container, that can be stored and viewed by an attacker.  This version of UCSniff will be 3.0, a windows port of the code.  We are using the JUCE GUI Libraries to develop the UCSniff GUI.

We’ll also be unveiling VideoJak, an IP Video interception and replay DoS tool.  This tool will be revealed for the first time to the world with some new attacks against IP video surveillance and IP video phones.

VideoJak and UCSniff can now be followed on Twitter.  Check out the pages for both of them:

http://twitter.com/ucsniff

http://twitter.com/videojak

Finally, here is a little teaser for the look and feel of the new UCSniff 3.0 GUI.  ACE is a small program that steals the VoIP corporate directory in Cisco UCM environments.  We are nearly complete with building the ACE application on Windows.   Here it is:

Ace in action

Hey, Jason Ostrom here.   We are going to be at the SANS Penetration Test Summit June 1 – 2, 2009, in Las Vegas, presenting on “VoIP Penetration Testing.”  If you haven’t seen or heard of this event, check it out for sure.  I enjoyed this event last year, and SANS puts on a very high quality event.   For those people interested in penetration testing or responsible for it in the enterprise, you’ll be exposed to security professionals and experts in the field who will give you valuable methods and techniques.  I’ve taken a look at the agenda and the speakers are leaders in the industry and their respective fields – Josh Wright, HD Moore,  Jeremiah Grossman, Valsmith, Larry Pesce, Paul Asadoorian.

I presented at this event last year, but it was a very short (20 minute) presentation on VoIP Hopper.  Our presentation this time around is for 1 hour and it will truly rock.  We will be sharing concepts, theories, principles, techniques, methods, tips and tricks that we have learned from penetration testing production, enterprise VoIP / UC networks.  In VIPER Lab, we have built a real production network and we live, breathe, eat and sleep how attacker’s would exploit this network.  So we think that this presentation will give some great insight on what happens in real assessments and how to successfully perform a VoIP penetration test.  Most importantly, we are most focused on mapping out the business risk of the vulnerabilites that we enumerate.

Hopefully we will see you at this great event!  SANS also wanted me to pass along that there is a travel voucher discount (below) which will make the event more affordable.

Event overview:

http://www.sans.org/pentesting09_summit

Detailed Agenda, including speaker list:

http://www.sans.org/pentesting09_summit/agenda.php

Travel Voucher:

http://www.sans.org/pentesting09_summit/travelbucks.php