Hey, Jason Ostrom here.   We are going to be at the SANS Penetration Test Summit June 1 – 2, 2009, in Las Vegas, presenting on “VoIP Penetration Testing.”  If you haven’t seen or heard of this event, check it out for sure.  I enjoyed this event last year, and SANS puts on a very high quality event.   For those people interested in penetration testing or responsible for it in the enterprise, you’ll be exposed to security professionals and experts in the field who will give you valuable methods and techniques.  I’ve taken a look at the agenda and the speakers are leaders in the industry and their respective fields – Josh Wright, HD Moore,  Jeremiah Grossman, Valsmith, Larry Pesce, Paul Asadoorian.

I presented at this event last year, but it was a very short (20 minute) presentation on VoIP Hopper.  Our presentation this time around is for 1 hour and it will truly rock.  We will be sharing concepts, theories, principles, techniques, methods, tips and tricks that we have learned from penetration testing production, enterprise VoIP / UC networks.  In VIPER Lab, we have built a real production network and we live, breathe, eat and sleep how attacker’s would exploit this network.  So we think that this presentation will give some great insight on what happens in real assessments and how to successfully perform a VoIP penetration test.  Most importantly, we are most focused on mapping out the business risk of the vulnerabilites that we enumerate.

Hopefully we will see you at this great event!  SANS also wanted me to pass along that there is a travel voucher discount (below) which will make the event more affordable.

Event overview:

http://www.sans.org/pentesting09_summit

Detailed Agenda, including speaker list:

http://www.sans.org/pentesting09_summit/agenda.php

Travel Voucher:

http://www.sans.org/pentesting09_summit/travelbucks.php