{"id":937,"date":"2010-03-04T10:56:00","date_gmt":"2010-03-04T10:56:00","guid":{"rendered":"https:\/\/www-new.brucon.org\/2018\/2010\/03\/04\/announcing-brucon-training-2-a-crash-course-in-pentesting-and-securing-voip-networks\/"},"modified":"2010-03-04T10:56:00","modified_gmt":"2010-03-04T10:56:00","slug":"announcing-brucon-training-2-a-crash-course-in-pentesting-and-securing-voip-networks","status":"publish","type":"post","link":"https:\/\/archive.brucon.org\/2023\/2010\/03\/04\/announcing-brucon-training-2-a-crash-course-in-pentesting-and-securing-voip-networks\/","title":{"rendered":"Announcing BruCON Training #2: A crash course in pentesting and securing VOIP networks"},"content":{"rendered":"<p>BruCON is proud to announce this second training session. More training sessions will be published in the following days, so check  back regularly.<a href=\"http:\/\/2010.brucon.org\/index.php\/Training\"><br \/><\/a><br \/><span style=\"font-weight: bold;font-size:130%\">Abstract:<br \/><\/span><br \/>As VoIP networks become more and more part of the way organizations  communicate, security professionals need to understand their strengths  and weaknesses. This knowledge will help them make sound decisions on  the security (or lack of) of their VoIP system and network.<\/p>\n<p>Attendees who follow the VoIP security training will gain valuable  hands-on experience in testing VoIP equipment and networks. During the  training they will make use of existent security tools as well as custom  built tools to help them get the job done.<\/p>\n<p>These are some of the hands-on topics that are covered:<\/p>\n<ul>\n<li>VLAN  Hopping<\/li>\n<li>Fingerprinting VoIP devices<\/li>\n<li>Abusing SIP<\/li>\n<li>Toll  fraud issues<\/li>\n<li>Wiretapping VoIP phone calls<\/li>\n<li>Denial of  service attacks<\/li>\n<li>Attacks on VoIP configuration interfaces <\/li>\n<ul>\n<li>web  application attacks<\/li>\n<li>default configuration issues<\/li>\n<\/ul>\n<li>Covert  channels through VoIP<\/li>\n<\/ul>\n<p><span style=\"font-weight: bold;font-size:130%\">BIO trainers:<br \/><\/span><br \/><span style=\"font-weight: bold\">Sandro Gauci<\/span> is the owner and Founder of EnableSecurity  (www.enablesecurity.com) where he performs R&amp;D and security  consultancy for mid-sized companies. Sandro has over 9 years experience  in the security industry and is focused on analysis of security  challenges and providing solutions to such threats. His passion is  vulnerability research and has previously worked together with various  vendors such as Microsoft and Sun to fix security holes. Sandro is the author of the free VoIP security scanning suite SIPVicious  (sipvicious.org) and VOIPPACK for CANVAS.<\/p>\n<p><span style=\"font-weight: bold\">Joffrey CZARNY<\/span>, working for Devoteam Security Business Unit (FR). Since 2001, Joffrey is a pentester, he has released advisories on  VoIP Cisco products and spoken at various security-focused conferences  (Wireless Conference at Infosec Paris and Wireless Workshop at Hack.lu  2005, VoIP at Hack.lu 2007\/2008 and ITunderground 2008\/2009). On his  site, www.insomnihack.net, he maintains the Elsenot project (&#8220;<a href=\"http:\/\/insomnihack.net\/elsenot\/\" title=\"http:\/\/insomnihack.net\/elsenot\/\" rel=\"nofollow\">http:\/\/insomnihack.net\/elsenot\/<\/a>&#8220;)  and posts video tutorials and tools on several security aspects.<\/p>\n<p>For more information, visit our website.<\/p>\n<p><a href=\"http:\/\/2010.brucon.org\/index.php\/Training\">http:\/\/2010.brucon.org\/index.php\/Training<\/a><\/p>\n<p><a href=\"http:\/\/2010.brucon.org\/index.php\/Training\"><\/a><\/p>\n<p>Related posts:<\/p>\n<ul>\n<li><a href=\"http:\/\/blog.brucon.org\/2010\/03\/announcing-brucon-training-1-pentesting.html\" class=\"broken_link\" rel=\"nofollow\">Announcing  BruCON Training #1: Pentesting High Security Environments<\/a><\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>BruCON is proud to announce this second training session. More training sessions will be published in the following days, so check back regularly.Abstract:As VoIP networks become more and more part of the way organizations communicate, security professionals need to understand their strengths and weaknesses. This knowledge will help them make sound decisions on the security (or lack of) of their VoIP system and network. Attendees who follow the VoIP security training will gain valuable hands-on&#8230;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[5],"tags":[],"class_list":{"0":"post-937","1":"post","2":"type-post","3":"status-publish","4":"format-standard","6":"category-training"},"menu_order":0,"_links":{"self":[{"href":"https:\/\/archive.brucon.org\/2023\/wp-json\/wp\/v2\/posts\/937","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/archive.brucon.org\/2023\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/archive.brucon.org\/2023\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/archive.brucon.org\/2023\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/archive.brucon.org\/2023\/wp-json\/wp\/v2\/comments?post=937"}],"version-history":[{"count":0,"href":"https:\/\/archive.brucon.org\/2023\/wp-json\/wp\/v2\/posts\/937\/revisions"}],"wp:attachment":[{"href":"https:\/\/archive.brucon.org\/2023\/wp-json\/wp\/v2\/media?parent=937"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/archive.brucon.org\/2023\/wp-json\/wp\/v2\/categories?post=937"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/archive.brucon.org\/2023\/wp-json\/wp\/v2\/tags?post=937"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}