The Impact of IPv6 on Penetration Testing

Abstract : In this paper we discuss the impact the use of IPv6 has on remote penetration testing of servers and web applications. Several modifications to the penetration testing process are proposed to accommodate IPv6. Among these modifications are ways of performing fragmentation attacks, host discovery and brute-force protection. We also propose new checks for IPv6-specific vulnerabilities, such as bypassing firewalls using extension headers and reaching internal hosts through available transition mechanisms.The changes to the penetration testing process proposed in this paper can be used by security companies to make their penetration testing process applicable to IPv6 targets.
Type de document :
Communication dans un congrès
Róbert Szabó; Attila Vidács. 18th European Conference on Information and Communications Technologies (EUNICE), Aug 2012, Budapest, Hungary. Springer, Lecture Notes in Computer Science, LNCS-7479, pp.88-99, 2012, Information and Communication Technologies. 〈10.1007/978-3-642-32808-4_9〉
Liste complète des métadonnées

Littérature citée [26 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01543169
Contributeur : Hal Ifip <>
Soumis le : mardi 20 juin 2017 - 15:21:28
Dernière modification le : mardi 20 juin 2017 - 15:23:09
Document(s) archivé(s) le : vendredi 15 décembre 2017 - 21:31:14

Fichier

978-3-642-32808-4_9_Chapter.pd...
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Christiaan Ottow, Frank Vliet, Pieter-Tjerk Boer, Aiko Pras. The Impact of IPv6 on Penetration Testing. Róbert Szabó; Attila Vidács. 18th European Conference on Information and Communications Technologies (EUNICE), Aug 2012, Budapest, Hungary. Springer, Lecture Notes in Computer Science, LNCS-7479, pp.88-99, 2012, Information and Communication Technologies. 〈10.1007/978-3-642-32808-4_9〉. 〈hal-01543169〉

Partager

Métriques

Consultations de la notice

59

Téléchargements de fichiers

37