Published on April 13th, 2015 | by MaxiSoler0
IPv6 Toolkit v2.0 (Guille) Released
The SI6 Networks’ IPv6 toolkit is a set of IPv6 security assessment and trouble-shooting tools. It can be leveraged to perform security assessments of IPv6 networks, assess the resiliency of IPv6 devices by performing real-world attacks against them, and to trouble-shoot IPv6 networking problems. The tools comprising the toolkit range from packet-crafting tools to send arbitrary Neighbor Discovery packets to the most comprehensive IPv6 network scanning tool out there (our scan6 tool).
Changelog v2.0 (Guille)
- path6: New tool. Added a fully-IPv6-capable traceroute tool, named path6.
- script6: New tool. Added a new tool which incorporates new functionality and also provides a shortcut to other existing tools.
- blackhole6: New tool. Added a new tool isolates IPv6 blackholes.
- udp6: New tool. Added a new tool that can send arbirary UDP/IPv6 packets.
- All: Fix bug when reading packets. lipcap “internals” together with select() would cause (at times) delays when reading packets.
- All: Add support for Solaris. Solaris is now a supported platform.
- All: Fix bug in next hop determination. A bug caused, in some scenarios, the tools to fail with “cannot find next hop”.
- All: Fix support for loopback interface. The tools failed to set the “virtual” “Ether Proto” for packets sent on the loopback interface, and hence they were discarded.
- All: Add support for domain names. All tools now support domain names in their “-d” options.
- addr6: Fix bug in address scope filtering. A bug caused address scope filters to behave incorrectly.
- addr6: Fix error in manual page. Some of the long-option names were incorrect.
- scan6: Fixes bug in address range computation. Prefixes that were not multiple of 16 resulted in bogus address ranges.
- scan6: Add support for port scanning. scan6 now implements several techniques for TCP and UDP port scanning.
- scan6: Add support for heuristic host scanning. scan6 can now automatically infer the IID type of a target and reduce the search space accordingly (just “-d example.com/64” or “-d IPV6ADDRESS/64”.
- tcp6: Add TCP probe mode. Probe mode allows you to employ tcp6 for simple probing (e.g., port scanning)
- tcp6: Add “–open-mode” and “–close-mode” options. These two options allow you to cause a TCP connection at a remote node to transition to any specific state (and hene perform e.g., FIN-WAIT-2 floods)
- tcp6: Add “–data” option. This options allows to set a specific TCP payload from the command-line (e.g., an HTTP “GET” command).
- script6: Fix bug in get-aaaa, get-ns, and get-mx. Domains that had a CNAME would be skipped.
- frag6: Fix bug in Frag ID assessment. Probes are now sent every 10ms rather than in batches, to minimize packet reordering.
- The following platforms are supported: FreeBSD, NetBSD, OpenBSD, Ubuntu, Debian GNU/Linux, Debian GNU/kfreebsd, Solaris, Gentoo Linux, and Mac OS.
List of Tools
- addr6: An IPv6 address analysis and manipulation tool.
- blackhole6: A troubleshooting tool which can find IPv6 where in the network topology packets with specific IPv6 Extension Headers are being dropped.
- flow6: A tool to perform a security asseessment of the IPv6 Flow Label.
- frag6: A tool to perform IPv6 fragmentation-based attacks and to perform a security assessment of a number of fragmentation-related aspects.
- icmp6: A tool to perform attacks based on ICMPv6 error messages.
- jumbo6: A tool to assess potential flaws in the handling of IPv6 Jumbograms.
- na6: A tool to send arbitrary Neighbor Advertisement messages.
- ni6: A tool to send arbitrary ICMPv6 Node Information messages, and assess possible flaws in the processing of such packets.
- ns6: A tool to send arbitrary Neighbor Solicitation messages.
- path6: A versatile IPv6-based traceroute tool (which supports extension headers, IPv6 fragmentation, and other features not present in existing traceroute implementations).
- ra6: A tool to send arbitrary Router Advertisement messages.
- rd6: A tool to send arbitrary ICMPv6 Redirect messages.
- rs6: A tool to send arbitrary Router Solicitation messages.
- scan6: An IPv6 address scanning tool.
- script6: A set of scripts/commands that make rather complex and frequent tasks easy.
- tcp6: A tool to send arbitrary TCP segments and perform a variety of TCP-based attacks.
- udp6: A tool for sending arbitrary IPv6-based UDP datagrams.
Related Documents (PDF)
More Information: here
Thanks to our friend Fernando Gont for sharing this tool with us. 😉