- VoIP-001 - VLAN hopping from data network to voice network
- VoIP-002 - Extension Enumeration & Number Harvesting
- VoIP-003 - Capturing SIP Authentication
- VoIP-004 - Eavesdropping Calls
- VoIP-005 - CallerID spoofing
- VoIP-006 - RTP injection
- VoIP-007 - Signaling Manipulation
- VoIP-008 - Identification of insecure services
- VoIP-009 - Testing for Default Credentials
- VoIP-010 - Application level vulnerabilities
- VoIP-011 - Voice Mail Attacks
- VoIP-012 - Phone Firmware Analysis