all InfoSec news
Stunner - Tool To Test And Exploit STUN, TURN And TURN Over TCP Servers
KitPloit - PenTest Tools! www.kitploit.com
Stunner is a tool to test and exploit STUN, TURN and TURN over TCP servers. TURN is a protocol mostly used in videoconferencing and audio chats (WebRTC).
If you find a misconfigured server you can use this tool to open a local socks proxy that relays all traffic via the TURN protocol into the internal network behind the server.
I developed this tool during a test of Cisco Expressway which resulted in some vulnerabilities: https://firefart.at/post/multiple_vulnerabilities_cisco_expressway/
To get the required username …
exploit misconfiguration servers stunner tcp test tool turn webrtc websocket wireshark