The Impact of IPv6 on Penetration Testing


Share/Save/Bookmark

Ottow, Christiaan and Vliet, Frank van and Boer, Pieter-Tjerk de and Pras, Aiko (2012) The Impact of IPv6 on Penetration Testing. In: 18th EUNICE/IFIP International Conference on Information and Communication Technologies, EUNICE 2012, 29-31 August 2012, Budapest, Hungary (pp. pp. 88-99).

open access
[img]
Preview
PDF
293kB
Abstract:In this paper we discuss the impact the use of IPv6 has on remote penetration testing of servers and web applications. Several modifications to the penetration testing process are proposed to accommodate IPv6. Among these modifications are ways of performing fragmentation attacks, host discovery and brute-force protection. We also propose new checks for IPv6-specific vulnerabilities, such as bypassing firewalls using extension headers and reaching internal hosts through available transition mechanisms. The changes to the penetration testing process proposed in this paper can be used by security companies to make their penetration testing process applicable to IPv6 targets.
Item Type:Conference or Workshop Item
Copyright:© 2012 Springer
Faculty:
Electrical Engineering, Mathematics and Computer Science (EEMCS)
Research Group:
Link to this item:http://purl.utwente.nl/publications/81276
Official URL:http://dx.doi.org/10.1007/978-3-642-32808-4_9
Export this item as:BibTeX
EndNote
HTML Citation
Reference Manager

 

Repository Staff Only: item control page