Well after a downtime of several months, in which I managed to lose/misplace all the old content, I've finally gotten around to getting the site back up. Cheers to s0ttle (www.sawbox.org) for the hosting. Over the past few months I've been fairly busy and over the coming weeks I should hopefully get around to writing some articles on what I've been up to. In short I've built a few testing tools, knocked over a few applications and generally broken stuff ;)

The main focus of my attentions has been VoIPer, a VoIP security testing toolkit. It includes a fuzzer (based on the Sulley fuzzing framework) and a 'torture' tool based on RFC 4475. At the moment it's functional and has good support for SIP testing but there's still a lot of work to be done in auxillary modules e.g crash detection. The design of it is fairly modular and that combined with the use of Sulley means that extending it to include, for example, H.323 should be trivial. Right now it can generate over 100,000 test cases and has managed to knock over quite a few SIP clients and servers. In a couple of weeks I'll be uploading version 0.01 to sourceforge so it should be available at http://voiper.sourceforge.net

I've also begun working on two other tools, one a Linux kernel testing tool (although it's little more than a script right now) and another which will hopefully end up as a static analysis tool for integer related vulnerabilities. They're both in the very early stages of development though so I'll post some more information and hard facts... when I actually have any ;)

This time around I've also decided to include an 'Advisories' section on the site which may seem completely hypocritical of me given I'm always ranting about zero disclosure. Basically, it will be for any bugs I come across that are useless, or have outlived their use. What's the point then? Well besides saying "Look at me, I'm great la di da di da" maybe someone will find them educational or be able to exploit issues that I can't.

Right, well that's enough of my time wasted I think.  I can never think of a way to end these things gracefully.....