VoIP Eavesdropping Tool

Posted: Friday, February 27, 2009 at 9:18 pm
Categories: <a href="http://www.dailycupoftech.com/category/voip/" title="View all posts in VOIP" rel="category tag">VOIP , <a href="http://www.dailycupoftech.com/category/security/" title="View all posts in Security" rel="category tag">Security
Do More: You can skip to the end and leave a response. Pinging is currently not allowed.

I have been spending some time working on a network analysis system and I have been slowly adding different tools to the system. I have a lot of the basics such as wireshark, ettercap, dsniff, and kismet but I wanted a little something for the VoIP side. This is when I ran across UCSniff.

UCSniff

UCSniff is an exciting new VoIP Security Assessment tool that leverages existing open source software into several useful features, allowing VoIP owners and security professionals to rapidly test for the threat of unauthorized VoIP Eavesdropping. Written in C, and initially released for Linux systems, the software is freely available for anyone to download, under the GPLv3 license. Some useful features of UCSniff that have been combined together into a single package:

Allows targeting of VoIP Users based on Corporate Directory and/or extensions

Automatically re-creates and saves entire voice conversations to a single file that can be played back by media players

Support for G.722 and G.711 u-law compression codecs

Automated VLAN Hop and Discovery support

A VoIP Sniffer combined with a MitM re-direction tool

Monitor Mode

Sniffs entire conversation if only one phone is in source VLAN

This looks to be pretty cool. Especially if I can get a directory of users from the PBX and then select who to listen in on (which it appears that it can do according to the screenshots)!