The Impact of IPv6 on Penetration Testing


Ottow, Christiaan and Vliet, Frank van and Boer, Pieter-Tjerk de and Pras, Aiko (2012) The Impact of IPv6 on Penetration Testing. In: 18th EUNICE/IFIP International Conference on Information and Communication Technologies, EUNICE 2012, 29-31 August 2012, Budapest, Hungary (pp. pp. 88-99).

open access
Abstract:In this paper we discuss the impact the use of IPv6 has on remote penetration testing of servers and web applications. Several modifications to the penetration testing process are proposed to accommodate IPv6. Among these modifications are ways of performing fragmentation attacks, host discovery and brute-force protection. We also propose new checks for IPv6-specific vulnerabilities, such as bypassing firewalls using extension headers and reaching internal hosts through available transition mechanisms. The changes to the penetration testing process proposed in this paper can be used by security companies to make their penetration testing process applicable to IPv6 targets.
Item Type:Conference or Workshop Item
Copyright:© 2012 Springer
Electrical Engineering, Mathematics and Computer Science (EEMCS)
Research Group:
Link to this item:
Official URL:
Export this item as:BibTeX
HTML Citation
Reference Manager


Repository Staff Only: item control page