Skip to main content

Why do we focus on RTC security?

We believe that communication is a fundamental human need and securing it allows us to communicate freely. And naturally, we do love a tough challenge.

Illustration of crushing phone, crt monitor and blue-box

Who are we?

We are a team of security researchers who strive to provide valuable results through quality work. Curiosity is close to our heart, constantly learning, researching and sharing knowledge with the rest of the security community. We value honesty and do not shy away from saying things as we see them, especially when it is about topics that are dear to us. And finally, we are approachable and essentially, a friendly bunch who appreciate working as a team with our colleagues, clients and within the wider community.

Sandro Gauci, CEO at Enable Security

Sandro Gauci

CEO, Chief Mischief Officer

Sandro Gauci founded Enable Security back in 2008 and nowadays leads its operations and research. To the real-time communications community he is known as the original developer of SIPVicious OSS. His role is to focus on the vision of the company, design offensive security tools and engage in security research and testing. Therefore, he is the proud owner of the title of Chief Mischief Officer at Enable Security.

Sandro started his career in information security back in 2000 and has been hacking software and phone systems since his teens.

He offers public office hours and is reachable here.

Alfred Farrugia, R&D at Enable Security

Alfred Farrugia

R&D, Chief Demolition Officer

Alfred Farrugia is the lead developer of SIPVicious PRO, does reverse engineering, fuzzing, DoS simulation and security research. He is an amazing pentester and often finds denial-of-service vulnerabilities where least expected. Hence he is the proud owner of the title of Chief Demolition Officer at Enable Security.

After working in highly regulated environments in finance, Alfred turned his passion to understanding and breaking applications through fuzzing techniques and manual code analysis.

RTC security blog

Communication Breakdown

Our blog dedicated to security, vulnerabilities and attacks affecting VoIP and WebRTC applications and infrastructure.
Read more »
Illustration of a gas mask, papers flying and a chemical flask

Research and publications

Security advisories and talks related to our work. Check out our contributions to open-source RTC solutions and the VoIP and WebRTC security space in general.
Read more »
Curated VoIP and WebRTC security news, research and updates

RTCSec Newsletter

A free periodic newsletter bringing you commentary and news around VoIP and WebRTC security, covering new vulnerabilities, security solutions and anything in between.
Read more »