Introduction to VoIP Testing Tools

In the past decade, the advancement of security testing tools has greatly improved the network engineer's ability to assess and mitigate security risks across IP data networks. Despite the inherent limitations of testing (as explained by well-known computer scientist Edsger Dijkstra, "Testing can prove the presence of bugs, but not their absence"), security tools such as protocol analyzers and vulnerability assessment utilities are among the primary weapons in a security professional's arsenal. Whereas programs aimed at testing the security of mature technologies are generally strong, developing comprehensive security tools in the early stages of the lifecycle of an emerging technology remains difficult. Because of that, the continued growth of VoIP has not been matched yet by security assessment technology. Currently, only a few effective testing tools are available to detect and exploit vulnerabilities in a VoIP environment.

While performing the research aimed at creating our attack taxonomy, several free software products were evaluated to determine their effectiveness at auditing VoIP networks. Unfortunately, most of the tested tools were found to have more or less serious flaws that limit their usefulness in real-life scenarios, suffering from either interface, robustness, scalability, or functional issues. Auditors should, therefore, employ these tools with caution, realizing most of them are still under heavy development and do not always perform as claimed. They should not rely on them solely to secure a VoIP deployment properly.

That said, the situation is rapidly evolving. Many commercial companies and open-source groups have finally begun facing the new security challenges introduced by VoIP and are already tailoring testing tools specific for VoIP. In the next months huge growth in this area is expected.

Table 7-1 contains the organized list of the best noncommercial VoIP signaling testing tools. The vast majority of them are compatible with the Linux platform. Figure 7-4 demonstrates the SIP vulnerability scanner, SiVuS.

Name

Description

Implementation Testing

SiVuS

The first publicly available vulnerability scanner for VoIP networks that use the SIP protocol

PROTOS c07-SIP

Test suite aimed at evaluating protocol-level security and robustness of SIP implementations

PROTOS

Test suite aimed at evaluating protocol-level security

c07-H2250v4

and robustness of H.225 implementations

VoIPy

Collection of protocol handlers for core VoIP protocols, part of the upcoming Tactical VoIP Toolkit by the grugq

SIP Proxy

Open-source VoIP security testing tool, featuring the ability to manipulate SIP traffic and fuzz SIP stack implementations

SFTF

SIP Forum Test Framework, aimed at testing SIP devices for common implementation errors

SIPsak

Swiss army knife for developers and administrators of SIP applications and devices

Smap

Mashup of nmap and SIPsak, able to locate and fingerprint remote SIP devices

enumIAX

An IAX2 login enumerator using REGREQ messages

iWar

Wardialer based on the IAX2 protocol

SCTPscan

SCTP protocol scanner, part of the SIGTRanalyzer Security Suite

SIP Bomber

Another tool for stress-testing SIP protocol implementations

SIPp

Test tool and traffic generator for the SIP protocol

Table 7-1 Signaling Protocols Implementation Testing Tools

Name

Description

CallGen323

H.323 call generator

NastySIP

Simple program that generates bogus SIP messages and sends them to any user

ASTEROID

A collection of malformed SIP packets

Seagull

An open-source multiprotocol traffic generator

SIPNess

SIP applications for testing and monitoring communication of SIP messages

Hacking Exposed VoIP

A collection of VoIP testing tools (including SIPSCAN) written by the authors of Hacking Exposed VoIP

Skora.net

A collection of testing tools for SIP implementations, including sip-scan, sip-kill, sip-redirectrtp, rtpproxy, and sip-proxykill

SIP Send Fun

Tiny command-line script that exploits SIP phones' vulnerabilities

Scapy

Extremely powerful interactive packet manipulation program

Nessus

The best network vulnerability scanner

Traffic Analysis and

Monitoring

SIPcrack

SIP protocol login sniffer and cracker

SIPv6 Analyzer

Packet analysis tool for IPv6 SIP-based VoIP applications

NetDude

Framework for inspection, analysis, and manipulation of tcpdump trace files

PSIPdump

Tool for dumping SIP sessions to disk in PCAP format

WIST

Web interface for SIP tracing, a SIP session debugger

Callflow

Collection of awk and shell scripts that will take a capture file and produce a call-flow sequence diagram

Callplot

Another tool to draw call-flow diagrams common in the telecommunications industry

SIP Scenario

Tool that generates HTML SIP call-flows from Wireshark traces

Table 7-1 Signaling Protocols Implementation Testing Tools (continued)

Figure 7-4 SiVuS in action

Was this article helpful?

0 0
The Ultimate Computer Repair Guide

The Ultimate Computer Repair Guide

Read how to maintain and repair any desktop and laptop computer. This Ebook has articles with photos and videos that show detailed step by step pc repair and maintenance procedures. There are many links to online videos that explain how you can build, maintain, speed up, clean, and repair your computer yourself. Put the money that you were going to pay the PC Tech in your own pocket.

Get My Free Ebook


Post a comment