« VIPER Live DVD VAST Release
Speaking at FRHACK 2009 »

Speaking at DefCon 17!

VIPER Lab will be speaking at the DefCon 17 security conference in Las Vegas on July 31st – August 1st.  The title of our talk is “Advancing Video Application Attacks with Video Interception, Recording, and Replay.” In this talk, we’ll be exploring some tools and methods for next-generation attacks against video applications that run on top of IP networks.  This is getting interesting.  2009 was declared as the year of IP Video.  Many enterprises are rolling out video applications, but most of the time security is an afterthought with these rollouts.  We’re trying to create the education and awareness here of new video attack paths that can happen.  With these new tools, VoIP owners and security professionals can test the security of their networks, in order to understand these risks, and make a decision as to whether it’s a risk they are willing to accept, or apply the requisite security controls.  Along the way in developing these new tools, we have found a couple of new video applications that are being used for businesses in real-world examples.   For more details on our talk, see the DefCon abstract:

https://www.defcon.org/html/defcon-17/dc-17-speakers.html#Ostrom

In this talk, for the first time, we’ll be unveiling UCSniff IP Video eavesdropping to the world.  UCSniff is the first security tool that can test the security of an IP network for video eavesdropping and reconstruction of video media into an AVI file container, that can be stored and viewed by an attacker.  This version of UCSniff will be 3.0, a windows port of the code.  We are using the JUCE GUI Libraries to develop the UCSniff GUI.

We’ll also be unveiling VideoJak, an IP Video interception and replay DoS tool.  This tool will be revealed for the first time to the world with some new attacks against IP video surveillance and IP video phones.

VideoJak and UCSniff can now be followed on Twitter.  Check out the pages for both of them:

http://twitter.com/ucsniff

http://twitter.com/videojak

Finally, here is a little teaser for the look and feel of the new UCSniff 3.0 GUI.  ACE is a small program that steals the VoIP corporate directory in Cisco UCM environments.  We are nearly complete with building the ACE application on Windows.   Here it is:

Ace in action

Ace in action

This entry was posted on Tuesday, June 30th, 2009 at 11:27 am and is filed under Speaking Events. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Leave a Reply