A PTA IMS VoWifi Access Vulnerability Assessment security project concerns an active IMS signaling scanning of an Operator’s IMS VoWifi Access.

This vulnerability assessment uses the proprietary P1 Security telecom scanner (PTA) to automate the auditing & penetration testing processes. This allows for the effective combination of a proprietary software (PTA) and the associated expertise for analysing results and drafting and delivering the final report. Moreover, the use of PTA makes it possible to minimise the number of days devoted to the project while going deeper into the analysis of the concerned perimeters.

Access segment from VoWifi User Equipment perspective will be assessed.

P1 Security recommends doing the VoWifi Vulnerability Assessment on a testbed network, because many fuzzing test scenarios have to be tested and many test cases imply sending a lot of traffic to the ePDG (exhaustion scenarios…), so DoS can occur.

Through use of PTA, P1 Security Proprietary Telecom-specific scanner, this Vulnerability Assessment will cover the following protocols from User Equipment VoWifi perspective:


These tests provide information about potential:

Network discovery, Network Element’s configuration Leak, Leak of callee personal information, Legal Interception (LI) bypass, Fraud, Network Element misconfiguration…

By performing attacks from IMS VoWifi Access segment, vulnerabilities can potentially and indirectly be discovered on the following network elements: