HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 39 guests and 2 members online
 
Advertisement

You are here: Home arrow EH-Netarrow News Items and General Discussion About EH-Netarrow Hello - new to this site and need a little help please
EH-Net
May 21, 2013, 01:35:18 PM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: Hello - new to this site and need a little help please  (Read 1859 times)
0 Members and 1 Guest are viewing this topic.
miss
Newbie
*
Offline Offline

Posts: 1


View Profile
« on: November 10, 2010, 05:08:39 PM »
 Hi i just came on this site and it is really great.  I am looking for some advice.  I am in college and need to do a project.  Hoping to do one on VOIP and set up an actual voip system and hope to use 3cx. 

I would like to somehow 'hack' into the voip system or intrude and be able to show this and then provide a solution or show i solved this security threat.  I am a total newbie to this kind of area so any help or guidance is REALLY appreciated.  Apologies if i haven't posted this in the right section.

Thanks. Smiley
Logged
sil
Hero Member
*****
Offline Offline

Posts: 549



View Profile WWW
« Reply #1 on: November 10, 2010, 06:23:35 PM »
What have you tried so far? How far have you gotten? What is your approach to this? How much do you know/understand about VoIP?

VoIP 101...

VoIP as a service is no different than email. Most "VoIP" in the sense of SIP registrations and or trunking is no different. There is going to be a username, password and registrar.

SIP Account:
Username
Password
Registrar

E-Mail Account:
Username
Password
SMTP/POP/IMAP Server

With this said there are two attack vectors to think about. The registrar and the end user. Attacking an end user yields you the ability to see/hear voicemail, place calls, etc. usually, these will have limited access/resources to do much via configurations

Attacking the registrar is no different than attacking any system. You're after administrative/root privileges. What services are running on the machine, are they vulnerable, if so, how. What can you gather/own/etc. That's all I'm willing to share right now. You have a baseline/framework to think about/work with. Guess I could supply more (http://secunia.com/advisories/22480) but as stated, this should give you enough to work with
Logged
http://www.infiltrated.net/mgz/puppylecter.jpg
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.056 seconds with 22 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Advertisement

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.