SIP - perhaps botnet? anyone else seeing this?

• Previous message (by thread): SIP - perhaps botnet? anyone else seeing this?
• Next message (by thread): SIP - perhaps botnet? anyone else seeing this?
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Leland E. Vandervort wrote:
> 
> Managed to get to the bottom of it, and it was indeed a SIP User-Agent
> brute-force attempt.  Interestingly, though, that your mail mentions
> specifically verizon... the majority of the remote addresses during this
> brute-force attempt were also behind verizon... coincidence?
> 
> Hmm..

There are at least two projects I'm aware of and some tools 
released/getting released working on war-dialing over SIP.

One tool to take a look at and see if it fits the bill is WarVOX from 
Metasploit's HD Moore.

http://www.warvox.org/index.html

	Gadi.

• Previous message (by thread): SIP - perhaps botnet? anyone else seeing this?
• Next message (by thread): SIP - perhaps botnet? anyone else seeing this?
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]