I run Enable Security, where we focus on security for real-time communications (VoIP and WebRTC). We do penetration testing, fuzzing, code review, and DDoS resilience testing for RTC systems.
- SIPVicious - VoIP/SIP security testing toolset (1k+ stars)
- Awesome RTC Hacking - curated list of VoIP, WebRTC, and VoLTE security resources
- WAFW00F - Web Application Firewall fingerprinting tool (6k+ stars)
- DVRTC - intentionally vulnerable VoIP/WebRTC lab for security training and research
I publish the RTCSec Newsletter - a monthly newsletter covering real-time communications security news, vulnerabilities, and research.
We also publish on the Enable Security blog.
Our security advisories and published pentest reports are at https://www.enablesecurity.com/advisories/ and enablesecurity/reports.