tag:blogger.com,1999:blog-6965515748199796807.post6449063928438822475..comments2008-08-21T09:59:02.062-07:00sandronoreply@blogger.comBlogger2125tag:blogger.com,1999:blog-6965515748199796807.post-77226758832978239972008-08-21T09:59:00.000-07:002008-08-21T09:59:00.000-07:00So I suppose you want a vulnerability assessment tool for VoIP? <BR/><BR/>That tends to require teams of people keeping a database of checks updated and so on. I can imagine something like that being commercial but it is hard to pull it off as opensource unless you have a really strong (business) model.<BR/><BR/>Are you (and a couple more people) willing to help out? If so please get in contact with me (sandro@enablesecurity.com). <BR/><BR/>Currently I'm more interested in penetration / insecurity tools that exploit generic behavior of SIP and that does not require constant research and updating of signatures.sandrohttp://www.blogger.com/profile/10744753642125235069noreply@blogger.comtag:blogger.com,1999:blog-6965515748199796807.post-27641739605112464642008-08-21T09:50:00.000-07:002008-08-21T09:50:00.000-07:00Any chance can you get Sipvicious to test VoIP systems for vulnerabilities such as Nessus or ISS?Anonymousnoreply@blogger.com