Cognitive and Scientific Brainology

Security - consulting,assessment,research,solutions,penetration tests.
Face - detect,track,recognize,extract features,learn emotions,character animation.





Harvesting and Collecting Voice Conference Bridges, Passwords, Pins, Access, Codes

Harvesting and Collecting Voice Conference Bridges, Passwords, Pins, Access, Codes

06/27/12 | by zveriu | Categories: Software, Hack, Security, Conference

Harvesting and Collecting Voice Conference Bridges, Passwords, Pins, Access, Codes

Sadly, BlackHat 2012 US and DefCon20 refused this short/fast/lightning talk.

Here are the slides for “Harvesting and Collecting Voice Conference Bridges, Passwords, Pins, Access, Codes”.

Here is the CFP submission:

Code:

----------------------------------
Detailed Outline
----------------------------------
 
In this talk, I will try to present:
- what are voice bridges (though, I bet everyone used voice conferencing at least once in their lifetime)
- various pieces and techniques of the voice bridges harvesting and processing puzzle
- what are the possible tools and how to make use of various tools at hand
- various ideas on how to (partially) automate all of this for a fast, semi-automated and distributed intelligence gathering
 
I will try to summarize with a few hints which can perhaps make life more secure
 
----------------------------------
Abstract
----------------------------------
 
Voice conferencing is a core platform making enterprises more efficient and driving them forward.
Voice conferencing is usually outsource to 3rd party providers and can be implemented/managed in-house.
 
No matter how it's being implemented, the security of the data exchanged over the conference lines represents a concern for the enterprises. This is why security PINs are being used.
 
However, the importance of these security details (like conference ID and conference PIN) is not very well understood and this is one can find these kind of details floating around - on the web, in details of shared/open calendars of Exchange/AD, etc.

Enjoy!

Securely yours,
Andrei

Leave a commentPermalink

Comments, Pingbacks:

No Comments/Pingbacks for this post yet...

Leave a comment:

Your email address will not be displayed on this site.
Your URL will be displayed.

Allowed XHTML tags: <p, ul, ol, li, dl, dt, dd, address, blockquote, ins, del, span, bdo, br, em, strong, dfn, code, samp, kdb, var, cite, abbr, acronym, q, sub, sup, tt, i, b, big, small>
(Line breaks become <br />)
(Set cookies for name, email and url)
(Allow users to contact you through a message form (your email will NOT be displayed.))
This is a captcha-picture. It is used to prevent mass-access by robots.
Please enter the characters from the image above. (case insensitive)

HIRE! - My Resume


Contact

Upcoming talks


PHDays
Hack In Paris
BlackHat USA

Ads

Cognitive and Scientific Brainology

A deep dive into brain's curiosities

May 2013
Sun Mon Tue Wed Thu Fri Sat
 << <   > >>
      1 2 3 4
5 6 7 8 9 10 11
12 13 14 15 16 17 18
19 20 21 22 23 24 25
26 27 28 29 30 31  

Friends

Categories

Archives

Misc

XML Feeds

What is RSS?

powered by b2evolution free blog software