Security professionals will be interested to know that their arsenal of Voice Security testing tools just got a little better. SecureLogix announced on Friday that they have expanded the tool set that was released with their Hacking Exposed: VoIP book. The original tool set has been available on their Hacking Exposed: VoIP website.

The tool set, now available with a free registered account, is available here.  All the original tools are still included, along with many enhancements, and several interesting new tools. You can find all the details over at their VoIP Security Blog. Some of the tools that were added include:

·         More DOS Attack tools – byeflood, optionsflood, regflood and subflood

·         A SIP address scanner – dirsniff, and dirsortmerge to help manage its output

·         Call Monitor & sipsniffer – for your eavesdropping and voice insertion needs

These tools should prove to be quite useful to Voice Security specialists, in their efforts to design and test secure voice solutions.

Jeff Lewis, CEH

Security Architect

Nortel

The National Institute of Standards and Technology (NIST) is overseeing the Information Security Automation Program and The Security Content Automation Protocol (SCAP). SCAP compliant tools with appropriate checklists allow for in situ security testing.

The Internet Security Alliance (ISAlliance) working with the Department of Homeland Security and NIST has been designated to lead an industry based program to develop SCAP checklists for VoIP, Real Time Converged Networks, Multimedia, Unified Communications , and VoIP based converged data and voice solutions.

At the upcoming 4th annual IT Security Automation Conference (Sept 23rd and 24th, 2008) the applicability of SCAP to these VoIP based systems and solutions will be explored. On Tuesday, September 23rd the ISAlliance will present a panel to discuss the applicability of security automation in VoIP, Multimedia, and Unified Communications environments, including VoIP based converged data and voice solutions.

In particular the value of performing in situ security testing will be covered, and how it can be applied to bring a level of security assurance to a high availability, high reliability network. This discussion should also set the stage for broader participation in the ISA sponsored workshop.

The workshop will be held on Thursday, September 25 and will focus on developing broad answers to the following four questions:

1. How can SCAP based testing be productively used to create a level of assurance in high availability/high reliability networks and what might some limitations to that approach be?
2. What SCAP protocols/approaches/components are best for voice and real time networks?
3. Is there a baseline of best practice/standards to base the development of SCAP checklists to achieve a level of assurance in voice and real time networks?
4. What are the next steps?

Details on the ISAlliance Project are here.

I will be participating in both the panel and the workshop, as well as reporting on the event here on the Nortel Voice Security Blog. In future posts we will explore the technology of In Situ Security testing and the use of SCAP in more detail.

Lawrence

Disclosure: Nortel is a founding member of the Internet Security Alliance, and a member of its Board of Directors.