[ :: mainpage :: register :: conference :: training :: call for papers (CFP) :: the venue ]
[ :: capture the flag (CTF) :: press/media :: conference agenda :: contact us :: forum ]
[ :: sponsors :: past conferences :: conference kit (English) ]

The Grugq (Independent Network Security Researcher)

Filed under: Main Page — Administrator @ 1:40 pm

Presentation Title: Ravage Unleashed : The Tactical VoIP Toolkit
Presentation Details:

Increasing numbers of users are benefiting from cheaper phone calls afforded by voice over IP technology. VoIP deployments are now common place for telcos, enterprises and consumers. Despite global adoption and rollout, voip is still hampered by ineffective security, in part due to poor VoIP penetration testing. Severe limitations in the capabilities of existing VoIP assessment tools restrict the range of attacks security practitioners can perform. The Tactical VoIP Toolkit (TacVTK) radically changes the VoIP auditing game.

This talk will focus on technical VoIP security assessment techniques, using the TacVTK core tools to demonstrate basic and advanced attacks. The primary emphasis for the talk will be SIP based VoIP security. The talk includes numerous demos, as well as providing conference participants a chance to see, and get a hold of, early release versions of the TacVTK.

About The Grugq

The Grugq is a domain expert consultant on VoIP security, digital forensic analysis and reverse engineering. The Grugq has spent 7 years working with all aspects of information security, from penetration testing to solutions and product development. The Grugq’s career has seen him working for financials, security consulting companies, start-ups and, most recently, founding his own information security company.

The Grugq’s information security expertise ranges from penetration testing and source code auditting, through to rootkit technologies and advanced digital forensic analysis and investigation. Since 2001 the Grugq has been involved in active Voice over IP security research, recently completing successful audits for major European and Asian telcos.

The Grugq’s domain expertise in VoIP security has seen him present at conferences, release advisories and complete assessments for national European and major Asian telcos. Additionally, he has developed strategic whitepapers for enterprise VoIP deployments. Based on his experiences with numerous audits, the Grugq has developed a VoIP security assessment tool suite to facilitate more accurate, effective and rapid VoIP centric penetration testing.

Event Organizer

Hack In The Box (M) Sdn. Bhd.

Supported & Endorsed By

UAE Telecommunications Regulatory Authority(TRA)

Malaysian Communications and Multimedia Commission (MCMC)

Malaysian Administrative Modernisation & Management Planning Unit

Platinum Sponsors

Gold Sponsors

Microsoft Corporation

HP Middle East

Official Airline Partner

Official Airline Partner for HITB Crew

CTF Sponsor

Scan Associates

CTF Prize Sponsor

Scan Associates

Official Media Partner

Official Publications

Our Speakers Are Supported By:

Telspace Systems

Telecom Security Task Force - TSTF.net


F-Secure Corp

Mozilla Corporation

FMA-RMS (Singapore/Malaysia)

Official Hotel

Supporting Media:

InfoSec News

(ISN) InfoSec News


Xakep (Russia)

Insecure Magazine

PHRACK Magazine

Hakin9 Magazine

Supporting Organizations

ISECOM - Insititue for Security and Open Methodologies

IT Underground

X-Focus China

Zone-H Defacement Mirror

Xatrix Security