ok i want to see part 2! it was just getting good!
>> Part 2 might be on it's way
good article though.
are there any good software VoIP programs or any cheap hardware VoIP phones so we can go play? can you sniff VoIP in a switched environment without doing anything evil?
>>Software Programs: I know of alot of Clones similer to
www.VoIPBuster.com (you can call bridge from there website free without downloading any software too).
>> Cheap Hardware: I have been told you can used most of the Vonage/Skype Phones. With VoIPBuster you do not get a real number but you can use a ATA or IP Phone to make outbound calls.
>> SNiffer software: To record VoIP Calls. I have not tried with VoIPBuster and I have had no luck sniffing Skype, but I have been able to successfully Sniff the Cisco Unity IP Phone networks with Cain & Able. Some times with the Cisco IP Telephony you have to spoof your MAC to get the correct VLAN depending on how the network is etup but I have been able to sniff over 30 calls at one time with Cain and record them with out affecting the network and the end users never see it. You have to perform a "Man in The Middle Attach (MITM)" to get the traffic running though your NIC. When running a MITM attack with Cain always look to the lower left of the window and watch for data/packet loss. If you see any packet loss when running a MITM attack stop the attach or your LAN switch might lock-up.
Good luck and have fun
Brian
Other : LZMA Decompression Help
Forensics : The Julie Amero Case: A Dangerous Farce
