#voipsecurity — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #voipsecurity, aggregated by home.social.
-
RE: https://infosec.exchange/@enablesecurity/116300709031150946
VoIP/WebRTC security has needed a DVWA equivalent for a long time. We built DVRTC: full dockerized VoIP stack, intentionally vulnerable, 7 guided exercises.
Live instance at pbx1.dvrtc.net — try it now.
https://www.enablesecurity.com/blog/introducing-dvrtc-damn-vulnerable-real-time-communications/
#infosec #webrtc #voipsecurity #penetrationtesting #training
-
RE: https://infosec.exchange/@enablesecurity/116300709031150946
VoIP/WebRTC security has needed a DVWA equivalent for a long time. We built DVRTC: full dockerized VoIP stack, intentionally vulnerable, 7 guided exercises.
Live instance at pbx1.dvrtc.net — try it now.
https://www.enablesecurity.com/blog/introducing-dvrtc-damn-vulnerable-real-time-communications/
#infosec #webrtc #voipsecurity #penetrationtesting #training
-
RE: https://infosec.exchange/@enablesecurity/116300709031150946
VoIP/WebRTC security has needed a DVWA equivalent for a long time. We built DVRTC: full dockerized VoIP stack, intentionally vulnerable, 7 guided exercises.
Live instance at pbx1.dvrtc.net — try it now.
https://www.enablesecurity.com/blog/introducing-dvrtc-damn-vulnerable-real-time-communications/
#infosec #webrtc #voipsecurity #penetrationtesting #training
-
RE: https://infosec.exchange/@enablesecurity/116300709031150946
VoIP/WebRTC security has needed a DVWA equivalent for a long time. We built DVRTC: full dockerized VoIP stack, intentionally vulnerable, 7 guided exercises.
Live instance at pbx1.dvrtc.net — try it now.
https://www.enablesecurity.com/blog/introducing-dvrtc-damn-vulnerable-real-time-communications/
#infosec #webrtc #voipsecurity #penetrationtesting #training
-
RE: https://infosec.exchange/@enablesecurity/116300709031150946
VoIP/WebRTC security has needed a DVWA equivalent for a long time. We built DVRTC: full dockerized VoIP stack, intentionally vulnerable, 7 guided exercises.
Live instance at pbx1.dvrtc.net — try it now.
https://www.enablesecurity.com/blog/introducing-dvrtc-damn-vulnerable-real-time-communications/
#infosec #webrtc #voipsecurity #penetrationtesting #training
-
Web application security has DVWA and WebGoat. VoIP and WebRTC security hasn't had anything like it ... until now.
We built DVRTC (Damn Vulnerable Real-Time Communications): a hands-on lab for learning VoIP/WebRTC attack techniques. Full dockerized stack with Kamailio, Asterisk, rtpengine, and coturn — each configured to exhibit specific vulnerable behaviors.
7 exercises covering SIP extension enumeration, RTP bleed, SIP digest leaks, credential cracking (online and offline), TURN relay abuse, and traffic analysis. There's a live instance at pbx1.dvrtc.net you can test against right now.
https://www.enablesecurity.com/blog/introducing-dvrtc-damn-vulnerable-real-time-communications/
GitHub: https://github.com/EnableSecurity/DVRTC/
#infosec #webrtc #voipsecurity #sipsecurity #penetrationtesting #training #TURN
-
Web application security has DVWA and WebGoat. VoIP and WebRTC security hasn't had anything like it ... until now.
We built DVRTC (Damn Vulnerable Real-Time Communications): a hands-on lab for learning VoIP/WebRTC attack techniques. Full dockerized stack with Kamailio, Asterisk, rtpengine, and coturn — each configured to exhibit specific vulnerable behaviors.
7 exercises covering SIP extension enumeration, RTP bleed, SIP digest leaks, credential cracking (online and offline), TURN relay abuse, and traffic analysis. There's a live instance at pbx1.dvrtc.net you can test against right now.
https://www.enablesecurity.com/blog/introducing-dvrtc-damn-vulnerable-real-time-communications/
GitHub: https://github.com/EnableSecurity/DVRTC/
#infosec #webrtc #voipsecurity #sipsecurity #penetrationtesting #training #TURN
-
Web application security has DVWA and WebGoat. VoIP and WebRTC security hasn't had anything like it ... until now.
We built DVRTC (Damn Vulnerable Real-Time Communications): a hands-on lab for learning VoIP/WebRTC attack techniques. Full dockerized stack with Kamailio, Asterisk, rtpengine, and coturn — each configured to exhibit specific vulnerable behaviors.
7 exercises covering SIP extension enumeration, RTP bleed, SIP digest leaks, credential cracking (online and offline), TURN relay abuse, and traffic analysis. There's a live instance at pbx1.dvrtc.net you can test against right now.
https://www.enablesecurity.com/blog/introducing-dvrtc-damn-vulnerable-real-time-communications/
GitHub: https://github.com/EnableSecurity/DVRTC/
#infosec #webrtc #voipsecurity #sipsecurity #penetrationtesting #training #TURN
-
Web application security has DVWA and WebGoat. VoIP and WebRTC security hasn't had anything like it ... until now.
We built DVRTC (Damn Vulnerable Real-Time Communications): a hands-on lab for learning VoIP/WebRTC attack techniques. Full dockerized stack with Kamailio, Asterisk, rtpengine, and coturn — each configured to exhibit specific vulnerable behaviors.
7 exercises covering SIP extension enumeration, RTP bleed, SIP digest leaks, credential cracking (online and offline), TURN relay abuse, and traffic analysis. There's a live instance at pbx1.dvrtc.net you can test against right now.
https://www.enablesecurity.com/blog/introducing-dvrtc-damn-vulnerable-real-time-communications/
GitHub: https://github.com/EnableSecurity/DVRTC/
#infosec #webrtc #voipsecurity #sipsecurity #penetrationtesting #training #TURN
-
Web application security has DVWA and WebGoat. VoIP and WebRTC security hasn't had anything like it ... until now.
We built DVRTC (Damn Vulnerable Real-Time Communications): a hands-on lab for learning VoIP/WebRTC attack techniques. Full dockerized stack with Kamailio, Asterisk, rtpengine, and coturn — each configured to exhibit specific vulnerable behaviors.
7 exercises covering SIP extension enumeration, RTP bleed, SIP digest leaks, credential cracking (online and offline), TURN relay abuse, and traffic analysis. There's a live instance at pbx1.dvrtc.net you can test against right now.
https://www.enablesecurity.com/blog/introducing-dvrtc-damn-vulnerable-real-time-communications/
GitHub: https://github.com/EnableSecurity/DVRTC/
#infosec #webrtc #voipsecurity #sipsecurity #penetrationtesting #training #TURN
-
CVE-2026-2329 — Critical VoIP RCE
Affects: Grandstream GXP1600
Type: Stack-based buffer overflow
Impact: Unauthenticated RCE (root)Attack Path:
• Extract SIP credentials
• Modify SIP proxy settings
• Transparent call interceptionOperational risk:
• SMB exposure
• Flat networks
• Insufficient VoIP monitoringPatch available: Firmware 1.0.7.81.
Community question:
Are you incorporating VoIP firmware into vulnerability scanning pipelines?Do you log and monitor SIP configuration changes?
Source: https://www.securityweek.com/critical-grandstream-phone-vulnerability-exposes-calls-to-interception/
Engage below and follow TechNadu for detailed CVE intelligence and technical breakdowns.
#ThreatIntel #VoIPSecurity #CVE20262329 #RCE #VulnerabilityManagement #NetworkDefense #Infosec #CyberRisk
-
CVE-2026-2329 — Critical VoIP RCE
Affects: Grandstream GXP1600
Type: Stack-based buffer overflow
Impact: Unauthenticated RCE (root)Attack Path:
• Extract SIP credentials
• Modify SIP proxy settings
• Transparent call interceptionOperational risk:
• SMB exposure
• Flat networks
• Insufficient VoIP monitoringPatch available: Firmware 1.0.7.81.
Community question:
Are you incorporating VoIP firmware into vulnerability scanning pipelines?Do you log and monitor SIP configuration changes?
Source: https://www.securityweek.com/critical-grandstream-phone-vulnerability-exposes-calls-to-interception/
Engage below and follow TechNadu for detailed CVE intelligence and technical breakdowns.
#ThreatIntel #VoIPSecurity #CVE20262329 #RCE #VulnerabilityManagement #NetworkDefense #Infosec #CyberRisk
-
CVE-2026-2329 — Critical VoIP RCE
Affects: Grandstream GXP1600
Type: Stack-based buffer overflow
Impact: Unauthenticated RCE (root)Attack Path:
• Extract SIP credentials
• Modify SIP proxy settings
• Transparent call interceptionOperational risk:
• SMB exposure
• Flat networks
• Insufficient VoIP monitoringPatch available: Firmware 1.0.7.81.
Community question:
Are you incorporating VoIP firmware into vulnerability scanning pipelines?Do you log and monitor SIP configuration changes?
Source: https://www.securityweek.com/critical-grandstream-phone-vulnerability-exposes-calls-to-interception/
Engage below and follow TechNadu for detailed CVE intelligence and technical breakdowns.
#ThreatIntel #VoIPSecurity #CVE20262329 #RCE #VulnerabilityManagement #NetworkDefense #Infosec #CyberRisk
-
CVE-2026-2329 — Critical VoIP RCE
Affects: Grandstream GXP1600
Type: Stack-based buffer overflow
Impact: Unauthenticated RCE (root)Attack Path:
• Extract SIP credentials
• Modify SIP proxy settings
• Transparent call interceptionOperational risk:
• SMB exposure
• Flat networks
• Insufficient VoIP monitoringPatch available: Firmware 1.0.7.81.
Community question:
Are you incorporating VoIP firmware into vulnerability scanning pipelines?Do you log and monitor SIP configuration changes?
Source: https://www.securityweek.com/critical-grandstream-phone-vulnerability-exposes-calls-to-interception/
Engage below and follow TechNadu for detailed CVE intelligence and technical breakdowns.
#ThreatIntel #VoIPSecurity #CVE20262329 #RCE #VulnerabilityManagement #NetworkDefense #Infosec #CyberRisk
-
How to Use Call Detail Records to Detect Fraud – Source: www.techrepublic.com https://ciso2ciso.com/how-to-use-call-detail-records-to-detect-fraud-source-www-techrepublic-com/ #rssfeedpostgeneratorecho #SecurityonTechRepublic #businessphonesystems #SecurityTechRepublic #CyberSecurityNews #fraudprotection #businessphone #voipfeatures #VOIPsecurity #Networking #Mobility #Security #Software #BigData #fraud #VoIP
-
How to Use Call Detail Records to Detect Fraud – Source: www.techrepublic.com https://ciso2ciso.com/how-to-use-call-detail-records-to-detect-fraud-source-www-techrepublic-com/ #rssfeedpostgeneratorecho #SecurityonTechRepublic #businessphonesystems #SecurityTechRepublic #CyberSecurityNews #fraudprotection #businessphone #voipfeatures #VOIPsecurity #Networking #Mobility #Security #Software #BigData #fraud #VoIP
-
How to Use Call Detail Records to Detect Fraud – Source: www.techrepublic.com https://ciso2ciso.com/how-to-use-call-detail-records-to-detect-fraud-source-www-techrepublic-com/ #rssfeedpostgeneratorecho #SecurityonTechRepublic #businessphonesystems #SecurityTechRepublic #CyberSecurityNews #fraudprotection #businessphone #voipfeatures #VOIPsecurity #Networking #Mobility #Security #Software #BigData #fraud #VoIP
-
Learn how data from call detail records can help you find fraud calls made by your phone system — and prevent them from happening again.#businessphone #businessphonesystems #fraud #fraudprotection #voip #voipfeatures #VOIPsecurity
How to Use Call Detail Records to Detect Fraud -
Learn how data from call detail records can help you find fraud calls made by your phone system — and prevent them from happening again.#businessphone #businessphonesystems #fraud #fraudprotection #voip #voipfeatures #VOIPsecurity
How to Use Call Detail Records to Detect Fraud -
Learn how data from call detail records can help you find fraud calls made by your phone system — and prevent them from happening again.#businessphone #businessphonesystems #fraud #fraudprotection #voip #voipfeatures #VOIPsecurity
How to Use Call Detail Records to Detect Fraud -
Setting up a conference bridge isn't hard, but you don’t want to get it wrong for important calls. Learn how to bridge calls securely.#hybridmeetings #software #virtualmeetings #voip #voipcalling #VOIPsecurity
How to Use a Conference Bridge to Run a Smooth Meeting -
Setting up a conference bridge isn't hard, but you don’t want to get it wrong for important calls. Learn how to bridge calls securely.#hybridmeetings #software #virtualmeetings #voip #voipcalling #VOIPsecurity
How to Use a Conference Bridge to Run a Smooth Meeting -
Setting up a conference bridge isn't hard, but you don’t want to get it wrong for important calls. Learn how to bridge calls securely.#hybridmeetings #software #virtualmeetings #voip #voipcalling #VOIPsecurity
How to Use a Conference Bridge to Run a Smooth Meeting