Comments on: Encrypted Voice … !!! http://maestro-sec.com/blogs/2008/09/encrypted-voice/ ::Hack IT to Master IT:: Tue, 22 Nov 2011 09:18:56 +0000 hourly 1 http://wordpress.org/?v=3.3 By: Ne0 http://maestro-sec.com/blogs/2008/09/encrypted-voice/comment-page-1/#comment-24 Ne0 Mon, 29 Sep 2008 18:20:03 +0000 http://maestro-sec.com/blogs/?p=73#comment-24 Again a suggestive one !!! You seem to be master of all... w0lf !! :) Thanks ! Again a suggestive one !!! You seem to be master of all… w0lf !! :) Thanks !

]]> By: w0lf http://maestro-sec.com/blogs/2008/09/encrypted-voice/comment-page-1/#comment-23 w0lf Mon, 29 Sep 2008 18:05:15 +0000 http://maestro-sec.com/blogs/?p=73#comment-23 You are welcome Ne0. A new generation Voip sniffer is said to be released very soon. This tool named UCSniff, has two settings. One is a learning mode, sniffing all the IP traffic then mapping telephone extensions to specific addresses. By default, it is capturing all the calls and saving them to wave files. The other setting is targeting conversations. After learning the IP addresses of the phone system, someone using UCSniff can listen to all the VoIP, or voice over Internet Protocol, conversations made by a specific user, say the CEO. That's user mode. A second mode, conversation mode, allows someone to monitor calls made exclusively between two extensions, say only when the CEO calls the CFO. This sounds much like automated MITM ARP poisoning attack used here to achieve this. You are welcome Ne0. A new generation Voip sniffer is said to be released very soon. This tool named UCSniff, has two settings.

One is a learning mode, sniffing all the IP traffic then mapping telephone
extensions to specific addresses. By default, it is capturing all the
calls and saving them to wave files.

The other setting is targeting conversations. After
learning the IP addresses of the phone system, someone using UCSniff can
listen to all the VoIP, or voice over Internet Protocol, conversations
made by a specific user, say the CEO. That’s user mode. A second mode,
conversation mode, allows someone to monitor calls made exclusively between two extensions, say only when the CEO calls the CFO.

This sounds much like automated MITM ARP poisoning attack used here to achieve this.

]]> By: Ne0 http://maestro-sec.com/blogs/2008/09/encrypted-voice/comment-page-1/#comment-22 Ne0 Sat, 27 Sep 2008 14:33:17 +0000 http://maestro-sec.com/blogs/?p=73#comment-22 Thanks w0lf for your suggestive input. I'll also try and search more on Cain & Abel.... Thanks w0lf for your suggestive input. I’ll also try and search more on Cain & Abel….

]]> By: w0lf http://maestro-sec.com/blogs/2008/09/encrypted-voice/comment-page-1/#comment-21 w0lf Sat, 27 Sep 2008 09:52:33 +0000 http://maestro-sec.com/blogs/?p=73#comment-21 Zfone seems to be a promising software for voice encryption. Voip communication should be encrypted. Cain Abel can re-construct recorded audio out from sniffef Voip packets in combination with MITM attack. Zfone seems to be a promising software for voice encryption. Voip communication should be encrypted. Cain Abel can re-construct recorded audio out from sniffef Voip packets in combination with MITM attack.

]]>