Lädt...

📰 IPv6Tools - A Robust Modular Framework That Enables The Ability To Visually Audit An IPv6 Enabled Network


Nachrichtenbereich: 📰 IT Security Nachrichten
🔗 Quelle: feedproxy.google.com

The IPv6Tools framework is a robust set of modules and plugins that allow a user to audit an IPv6 enabled network. The built-in modules support enumeration of IPv6 features such as ICMPv6 and Multicast Listener Discovery (MLD). In addition, the framework also supports enumeration of Upper Layer Protocols (ULP) such as multicast DNS (mDNS) and Link-Local Multicast Name Resolution (LLMNR). Users can easily expand the capability of the framework by creating plugins and modules in the Python language.

Requirements
  • python 2.7
  • pip
  • npm [development only]

Installation

Standard
[Optional] Use a virtualenv for installation: virtualenv venv && source venv/bin/activate
  1. git clone http://github.com/apg-intel/ipv6tools.git
  2. sudo pip install -r requirements.txt

Development
  1. git clone http://github.com/apg-intel/ipv6tools.git
  2. git checkout dev
  3. npm run setup

Usage

Standard
  1. sudo python app.py
  2. Navigate to http://localhost:8080 in a web browser

Development
  1. Run $ npm run serve
  2. In a separate terminal, run npm run dev
  3. Navigate to http://localhost:8081 in a web browser

CLI
TODO

Modules
Modules are classes that allow interaction with individual nodes or all nodes. These show up as a right click option on each node, or as a button below the graph.

Included Modules
Included in the project are a couple of modules to help validate your network, as well as use as examples for your own modules.
  • poisonLLMNR - Link-Local Multicast Name Resolution is the successor of of NBT-NS, which allows local nodes to resolve names and IP addresses. Enabling this module poisons LLMNR queries to all nodes on the local link.
  • CVE-2016-1879 - The following CVE is a vulnerability in SCTP that affects FreeBSD 9.3, 10.1 and 10.2. Enabling this module will launch a crafted ICMPv6 packet and potentially cause a DoS (assertion failure or NULL pointer dereference and kernel panic) to a single node.

Custom Modules
All modules are located in /modules and are automatically loaded when starting the server. Included in /modules is a file called template.py. This file contains the class that all modules must extend in order to display correctly and communicate with the webpage.
Use this template to build a custom module
from template import Template

class IPv6Module(Template):

def __init__(self, socketio, namespace):
super(IPv6Module, self).__init__(socketio, namespace)
self.modname = "CVE-2016-1879"
self.menu_text = "FreeBSD IPv6 DoS"
self.actions = [
{
"title": "FreeBSD IPv6 DoS", #name that's displayed on the buttons/menu
"action": "action", #method name to call
"target": True #set this to true to display it in the right-click menu
}
]

def action(self, target=None):
# send a log msg
self.socket_log('Running DoS on '+target['ip'])

# do stuff, etc

# merge results with main result set
listOfDicts = [{ip: '::1', device_name: 'test'}]
self.module_merge(listOfDicts)

Known Issues
  • Untested on large networks
  • Any stack traces mentioning dnet or dumbnet - follow the instructions below.
  • Some operating systems may require the libpcap headers. See notes below.

Installing libdnet
git clone https://github.com/dugsong/libdnet.git
cd libdnet
./configure && make
sudo make install
cd python
python setup.py install

libpcap headers in Ubuntu
sudo apt install libpcap-dev


...

🔧 Tìm Hiểu Về RAG: Công Nghệ Đột Phá Đang "Làm Mưa Làm Gió" Trong Thế Giới Chatbot


📈 39.5 Punkte
🔧 Programmierung

🔧 Modular CMS: How to use CMS in your modular content strategy


📈 28.29 Punkte
🔧 Programmierung

🔧 MODULAR APPLICATION OR MODULAR MONOLITH TEMPLATE: UNIFYING MICROSERVICES IN A SINGLE REPOSITORY


📈 28.29 Punkte
🔧 Programmierung

🕵️ GitHub - thetacom/hexabyte: A modern, modular, and robust TUI hex editor.


📈 27.95 Punkte
🕵️ Reverse Engineering

🔧 Grommet - A UI framework to create intuitive and visually appealing React components


📈 27.67 Punkte
🔧 Programmierung

🐧 Robust and beginner friendly dotfiles skeleton. Did not find anything robust to restore easily with backups.


📈 27.61 Punkte
🐧 Linux Tipps

📰 Can someone "audit" this extension and tell us if it has the ability to perform exploits?


📈 26.34 Punkte
📰 IT Security Nachrichten

📰 Can someone "audit" this extension and tell us if it has the ability to perform exploits?


📈 26.34 Punkte
📰 IT Security Nachrichten

📰 Zero-click Windows TCP/IP RCE impacts all systems with IPv6 enabled, patch now


📈 25.81 Punkte
📰 IT Security Nachrichten

📰 Zero-click Windows TCP/IP RCE impacts all systems with IPv6 enabled


📈 25.81 Punkte
📰 IT Security Nachrichten

📰 MIT Researchers Released a Robust AI Governance Tool to Define, Audit, and Manage AI Risks


📈 25.5 Punkte
🔧 AI Nachrichten

🕵️ Linux Kernel IPv6 net/ipv6/ip6_gre.c ip6gre_err() erweiterte Rechte


📈 25.09 Punkte
🕵️ Sicherheitslücken

🕵️ Linux Kernel 3.0.94/3.4.60 IPv6 Socket IOCTL net/ipv6/ip6_fib.c fib6_add access control


📈 25.09 Punkte
🕵️ Sicherheitslücken

🕵️ Linux Kernel up to 3.3.5 IPv6 net/ipv6/reassembly.c information disclosure


📈 25.09 Punkte
🕵️ Sicherheitslücken

🕵️ Linux Kernel IPv6 net/ipv6/xfrm6_tunnel.c xfrm6_tunnel_rcv resource management


📈 25.09 Punkte
🕵️ Sicherheitslücken

🕵️ VMware Workstation/Fusion IPv6 IPv6 Packet denial of service


📈 25.09 Punkte
🕵️ Sicherheitslücken

🕵️ Cisco IOS/IOS XE IPv6 IPv6 Packet denial of service


📈 25.09 Punkte
🕵️ Sicherheitslücken

🕵️ Cisco IOS XR up to 5.3.4 on ASR 9000 IPv6 Subsystem IPv6 Packet denial of service


📈 25.09 Punkte
🕵️ Sicherheitslücken

🕵️ Wireshark up to 2.2.6 IPv6 Dissector packet-ipv6.c denial of service


📈 25.09 Punkte
🕵️ Sicherheitslücken

🕵️ Linux Kernel IPv6 net/ipv6/ip6_gre.c ip6gre_err privilege escalation


📈 25.09 Punkte
🕵️ Sicherheitslücken

🕵️ Linux Kernel up to 4.8.12 Fragmented IPv6 Packet net/ipv6/icmp.c icmp6_send denial of service


📈 25.09 Punkte
🕵️ Sicherheitslücken

🕵️ Exim Internet Mailer up to 4.43 IPv6 Address host_aton long IPv6 Address memory corruption


📈 25.09 Punkte
🕵️ Sicherheitslücken

🕵️ Cisco IOS XR bis 5.3.4 auf ASR 9000 IPv6 Subsystem IPv6 Packet Denial of Service


📈 25.09 Punkte
🕵️ Sicherheitslücken

matomo