The Ethical Hacker Network - Hello - new to this site and need a little help please

Latest Additions

EH-Net Login

Welcome Guest.

No account yet? Register

Who's Online
We have 87 guests and 1 member online

EH-Net News Feeds
Latest Additions

Advertisement

You are here: Home

News Items and General Discussion About EH-Net

Hello - new to this site and need a little help please

EH-Net

May 26, 2012, 01:44:03 AM

Welcome, Guest. Please login or register.
Did you miss your activation email?

News: Advertise on EH-Net!! - Reasonable Rates, Highly Targeted Audience.

Home

Help

Calendar

Login

Register

EH-Net > EH-Net > News Items and General Discussion About EH-Net (Moderator: don) > Hello - new to this site and need a little help please

Pages: [1] Go Down

« previous next »

	Author	Topic: Hello - new to this site and need a little help please (Read 1335 times)
0 Members and 2 Guests are viewing this topic.

miss

Newbie

Offline

Offline

Posts: 1

Hello - new to this site and need a little help please

« on: November 10, 2010, 05:08:39 PM »

Hi i just came on this site and it is really great. I am looking for some advice. I am in college and need to do a project. Hoping to do one on VOIP and set up an actual voip system and hope to use 3cx.

I would like to somehow 'hack' into the voip system or intrude and be able to show this and then provide a solution or show i solved this security threat. I am a total newbie to this kind of area so any help or guidance is REALLY appreciated. Apologies if i haven't posted this in the right section.

Thanks.


	Logged

sil

Hero Member

Offline

Offline

Posts: 536

WWW

Re: Hello - new to this site and need a little help please

« Reply #1 on: November 10, 2010, 06:23:35 PM »

What have you tried so far? How far have you gotten? What is your approach to this? How much do you know/understand about VoIP?

VoIP 101...

VoIP as a service is no different than email. Most "VoIP" in the sense of SIP registrations and or trunking is no different. There is going to be a username, password and registrar.

SIP Account:
Username
Password
Registrar

E-Mail Account:
Username
Password
SMTP/POP/IMAP Server

With this said there are two attack vectors to think about. The registrar and the end user. Attacking an end user yields you the ability to see/hear voicemail, place calls, etc. usually, these will have limited access/resources to do much via configurations

Attacking the registrar is no different than attacking any system. You're after administrative/root privileges. What services are running on the machine, are they vulnerable, if so, how. What can you gather/own/etc. That's all I'm willing to share right now. You have a baseline/framework to think about/work with. Guess I could supply more (http://secunia.com/advisories/22480) but as stated, this should give you enough to work with


	Logged

http://www.infiltrated.net/mgz/puppylecter.jpg

Pages: [1] Go Up

« previous next »

Jump to:

Powered by SMF 1.1.16 | SMF © 2011, Simple Machines
Joomla Bridge by JoomlaHacks.com

Page created in 0.157 seconds with 21 queries.

Global Knowledge: Build Security Skills to Protect & Defend

eLearnSecurity Student Course Now Live!
5% Off with Code
ELS-EH-5

SANS Deals 4 EH-Netters
$150 OFF Any SANS Course in Any Format! Coupon Code: EHN_Connect Including SANS Security West 2012 & SANSFIRE 2012

Recent Forum Topics

Try CBT Nuggets Free!

Vote For EH-Net

technorati fave

Privacy Notice
for TDCC & All Properties

Advertisement

© 2012 The Ethical Hacker Network

Joomla! is Free Software released under the GNU/GPL License.