Upgrade to Pro — share decks privately, control downloads, hide ads and more …

IPv6 Tools

John Downey
September 26, 2011

IPv6 Tools

John Downey

September 26, 2011
Tweet

More Decks by John Downey

Other Decks in Technology

Transcript

  1. IPv6  Tools  

    View full-size slide

  2. BUILT-­‐IN  TOOLS  

    View full-size slide

  3. Ping  /  Traceroute  
    •  Windows  
    – Same  as  IPv4  (ping  and  tracert)  
    •  Unix-­‐like  
    – Suffix  with  6  (ping6  and  traceroute6)  
    – Must  specific  iface  for  link-­‐local  
    – Other  commands  
    •  Try  -­‐4  or  -­‐6  to  force  mode  

    View full-size slide

  4. Fun  with  mulI-­‐cast  
    •  hJp://www.iana.org/assignments/ipv6-­‐
    mulIcast-­‐addresses/  
    •  Ping  every  link-­‐local  address  
    – ping6  ff02::1%eth0  
    •  Every  router  
    – ping6  ff02::2%eth0  

    View full-size slide

  5. THC  IPV6  TOOLKIT  
    hJp://www.thc.org/thc-­‐ipv6/  

    View full-size slide

  6. fake_router6  
    •  Sends  a  Router  AdverIsement  (RA)  
    – Specify  interface  and  prefix  
    – 2001:db8::/32  is  reserved  for  example  
    networks  
    •  Nodes  with  autoconf  will  set  an  IP  
    •  Many  other  opIons  

    View full-size slide

  7. flood_router6  
    •  Evil  twin  of  previous  command  
    •  Sends  out  many  thousand  RAs  
    – All  different  
    •  Autoconf  devices  inundated  with  IPs  

    View full-size slide

  8. detect-­‐new-­‐ipv6  /  dos-­‐new-­‐ipv6  
    •  ICMPv6  duplicate  address  detecIon  (DAD)  
    •  detect-­‐new-­‐ipv6  
    – Prints  out  any  new  address  
    – OpIons  pipes  them  to  a  script  (autorun  nmap?)  
    •  dos-­‐new-­‐ipv6  
    – Responds  to  every  DAD  
    – Autoconf  theoreIcally  fails  

    View full-size slide

  9. alive6  
    •  Neighbor  discovery  
    •  See  what  nodes  are  on  network  

    View full-size slide

  10. fuzz_ipv6  /  exploit6  
    •  Tries  sending  various  malformed  packet  
    •  fuzz_ipv6  
    – Lets  you  control  what  is  malformed  
    – Send  to  a  specific  target  
    •  exploit6  
    – Tries  known  implementaIon  exploits  
    – Most  of  them  are  fixed  already  

    View full-size slide

  11. parasite6  /  redir6  
    •  AJempt  man  in  the  middle  aJacks  
    •  parasite6  
    – Acts  like  a  IPv4  ARP  spoofer  
    – Convince  other  node  you  own  that  IP  
    •  redir6  
    – Uses  ICMPv6  redirect  
    – Try  to  convince  node  you  have  beJer  route  

    View full-size slide