Jason Ostrom, a telecommunication security expert has unveiled UCSniff, a tool that demonstrates how easy it is to intercept Voice over Internet Protocol (VoIP) calls.

UCSniff is a next-generation VoIP-sniffer software tool that allows penetration testers to assess the security of VoIP calls over a network. A computer running UCSniff can be connected to the Ethernet port of the network you want to probe, A VLAN hopper automatically checks the network under probe until it accesses the part that carries VoIP calls. The UCSniff then injects spoofed Address Resolution Protocol (ARP) packets into the network allowing all VoIP traffic to be routed to the computer running UCSniff.

UCSniff creator Jason Ostrom said, “It’s silently intercepting all the traffic and forwarding it to the phone, so a regular phone user would not be able to tell the difference.

“They think they’re talking directly to the other phone when in fact the tool is actually intercepting all the traffic.”

UCSniff can catch bi-directional conversations and record them in a single audio file. It automatically records calls that use the G.711 and G.722 codecs. However, UCSniff cannot be used to probe a remote network, you need to be directly wired to the network to conduct a probe. UCSniff will be available for download in the coming weeks from Sipera Systems for free.

UCSniff is definitely a tool that every security and VoIP owner should have.

Popularity: 2% [?]