Directory Enumeration

• Tools:

• • SIPCrack - Sniffs traffic for valid usernames and then attempts to crack their passwords
  • • http://www.remote-exploit.org/index.php/Sipcrack
  • enumIAX - Uses IAX REGREQ messages against Asterisk
  • • http://www.tippingpoint.com/security/materials/enumiax-0.4a.tar.gz
  • SIPSCAN - Uses SIP OPTIONS, INVITE, and REGISTER messages against SIP servers
  • • http://www.hackingexposedvoip.com/tools/sipscan.msi

• Mitigation:

• • Encrypt signaling to prevent passive enumeration
  • Fix protocols that respond differently to valid vs. invalid username registrations.