ace-voip Package Description
ACE (Automated Corporate Enumerator) is a simple yet powerful VoIP Corporate Directory enumeration tool that mimics the behavior of an IP Phone in order to download the name and extension entries that a given phone can display on its screen interface. In the same way that the “corporate directory” feature of VoIP hardphones enables users to easily dial by name via their VoIP handsets, ACE was developed as a research idea born from “VoIP Hopper” to automate VoIP attacks that can be targeted against names in an enterprise Directory. The concept is that in the future, attacks will be carried out against users based on their name, rather than targeting VoIP traffic against random RTP audio streams or IP addresses. ACE works by using DHCP, TFTP, and HTTP in order to download the VoIP corporate directory. It then outputs the directory to a text file, which can be used as input to other VoIP assessment tools.
Tools included in the ace-voip package
ace – A simple VoIP corporate directory enumeration tool
root@kali:~# ace
ACE v1.10: Automated Corporate (Data) Enumerator
Usage: ace [-i interface] [ -m mac address ] [ -t tftp server ip address | -c cdp mode | -v voice vlan id | -r vlan interface | -d verbose mode ]
使用方法:ace [-i接口][-m mac地址][-t tftp服务器ip地址| -c cdp模式| -v语音vlan id | -r vlan接口| -d详细模式]
-i (Mandatory) Interface for sniffing/sending packets
-m (Mandatory) MAC address of the victim IP phone
-t (Optional) tftp server ip address
-c (Optional) 0 CDP sniff mode, 1 CDP spoof mode
-v (Optional) Enter the voice vlan ID
-r (Optional) Removes the VLAN interface
-d (Optional) Verbose | debug mode
-i(强制)接口,用于嗅探/发送数据包
-m(强制)受害者IP电话的MAC地址
-t(可选)tftp服务器ip地址
-c(可选)0 CDP嗅探模式,1 CDP欺骗模式
-v(可选)输入语音vlan ID
-r(可选)删除VLAN接口
Example Usages:
使用需要的IP电话的MAC地址提供了-m选项
用法:ace -t -m
Usage requires MAC Address of IP Phone supplied with -m option
Usage: ace -t -m
Mode to automatically discover TFTP Server IP via DHCP Option 150 (-m)
Example: ace -i eth0 -m 00:1E:F7:28:9C:8e
Mode to specify IP Address of TFTP Server
Example: ace -i eth0 -t 192.168.10.150 -m 00:1E:F7:28:9C:8e
Mode to specify the Voice VLAN ID
Example: ace -i eth0 -v 96 -m 00:1E:F7:28:9C:8E
Verbose mode
Example: ace -i eth0 -v 96 -m 00:1E:F7:28:9C:8E -d
Mode to remove vlan interface
Example: ace -r eth0.96
Mode to auto-discover voice vlan ID in the listening mode for CDP
Example: ace -i eth0 -c 0 -m 00:1E:F7:28:9C:8E
Mode to auto-discover voice vlan ID in the spoofing mode for CDP
Example: ace -i eth0 -c 1 -m 00:1E:F7:28:9C:8E
ace Usage Example
root@kali:~# coming soon
ace-voip方案描述
ACE(自动企业枚举器)是一个简单但功能强大的VoIP企业目录枚举工具,它模拟IP电话的行为,以便下载给定电话可以在其屏幕界面上显示的名称和扩展项。正如VoIP硬电话的“企业目录”功能使用户能够通过VoIP手持设备轻松地按名称拨号一样,ACE也是由“VoIP Hopper”提出的一项研究构想,旨在自动化VoIP攻击,针对企业目录中的名称。这个概念是,在未来,攻击将基于用户的姓名进行,而不是针对随机的RTP音频流或IP地址的VoIP流量。ACE通过使用DHCP、TFTP和HTTP来下载VoIP公司目录。然后,它将目录输出到一个文本文件中,该文本文件可以用作其他VoIP评估工具的输入。
ace-voip包中包含的工具
一个简单的VoIP公司目录枚举工具
root@kali: ~ #王牌
ACE v1.10:自动企业(数据)枚举器
示例用法:
通过DHCP选项150 (-m)自动发现TFTP服务器IP的模式
例如:ace -i eth0 -m 00:1E:F7:28:9C:8e
模式指定TFTP服务器的IP地址
例如:ace -i eth0 -t 192.168.10.150 -m 00:1E:F7:28:9C:8e
模式来指定语音VLAN ID
例如:ace -i eth0 -v 96 -m 00:1E:F7:28:9C:8E
详细模式
示例:ace -i eth0 -v 96 -m 001 e: F7:28:9C:8E -d
模式来删除vlan接口
例子:ace -r eth0.96
模式自动发现语音vlan ID在监听模式为CDP
例如:ace -i eth0 -c 0 -m 001 e: F7:28:9C:8E
模式自动发现语音vlan ID在欺骗模式为CDP
例如:ace -i eth0 -c 1 -m 001e:F7:28:9C:8E