BHUSA Arsenal 2014: Viproy – VoIP Penetration Testing Kit v2.0 Released

BHUSA Arsenal 2014: Viproy – VoIP Penetration Testing Kit v2.0 Released

Viproy Voip Pen-Test Kit provides penetration testing modules for VoIP networks. It supports signalling analysis for SIP and Skinny protocols, IP phone services and network infrastructure.



Changelog v2.0

Viproy 2.0 is released at Blackhat Arsenal USA 2014 with TCP/TLS support for SIP, vendor extentions support, Cisco CDP spoofer/sniffer, Cisco Skinny protocol analysers, VOSS exploits and network analysis modules. Furthermore, Viproy provides SIP and Skinny development libraries for custom fuzzing and analyse modules.

Current testing modules:

  • SIP Register
  • SIP Invite
  • SIP Message
  • SIP Negotiate
  • SIP Options
  • SIP Subscribe
  • SIP Enumerate
  • SIP Brute Force
  • SIP Trust Hacking
  • SIP UDP Amplification DoS
  • SIP Proxy Bounce
  • Skinny Register
  • Skinny Call
  • Skinny Call Forward
  • VOSS Call Forwarder (September 2014)
  • VOSS Speed Dial Manipulator (September 2014)
  • MITM Proxy TCP
  • MITM Proxy UDP
  • Cisco CDP Spoofer


New features on Blackhat Arsenal edition:

  • SIP TCP and TLS support
  • Cisco Skinny protocol support, development library and attack modules (register, call, forwarding)
  • VOSS Solutions IP Phone services exploits (available at the 2nd week of September)
  • Simple fuzzing for Invite, Message and Trust Hacking modules
  • SIP Message support with Authentication and Spoofing
  • Vendor support for Cisco (Cisco devices or 3rd party soft phones) and MS Lync
  • New MITM TCP/UDP proxies
  • Cisco CDP spoofer and sniffer
  • Bug fixes, improved multithread operations and improved DoS features

More Information:


Download Viproy VoIP Penetration Testing and Exploitation Kit v2.0

MaxiSoler @maxisoler