[ipv6hackers] IPv6 Security research

Marco Ermini marco.ermini at gmail.com
Tue Mar 20 11:59:57 CET 2012

You know I just get f*cking everything the other people don't
understand (and I like that, BTW :-))

(not that I understand it better, but at least I make an effort)

AFAIK, Fernando is already coming in UK to train the UK ISPs at the
NSIE. For the moment there is very few to test, but just contact me
privately. We have only set up some internal ISATAP tunnel but I am
very interested in Microsoft Direct Access. Unfortunately I don't see
IPv6 coming soon for the service provider part, but we'll start
internally - and of course I may be wrong.

You know, the next IPv6 gizmo will arrive from China, and the
management will order "roll out IPv6 in three months"...


On 20 March 2012 11:28, Marc Heuse <mh at mh-sec.de> wrote:
> Hi Marco,
> I just met Manfred Troeder here at the Troopers Conference again. I
> asked him who is responsible for the security part of the IPv6 projects
> - and he told me its you :-)
> well, I hope you know that I am the only person who can really test IPv6
> implementations and infrastructures (well OK, Fernando Gont too, but he
> is in Argentine), so remember me before rolling things out to the
> customers :-)
> Greets,
> Marc
> Am 20.03.2012 10:57, schrieb Marco Ermini:
>> On 20 March 2012 03:15, Marc Heuse wrote:
>> [...]
>>>> There are currently no tools and not even concepts of tools about
>>>> applying these techniques automatically, AFAIK, or at least nothing
>>>> commercially or industrially viable.
>>> well, of course there is, I implemented the techniques I presented of
>>> course - otherwise I would not have been able to generate the statistics
>>> :-) (and its not that hard to implement)
>>> but the tool is not public to prevent script kiddies to scan, and
>>> convince people to submit tools for the thc-ipv6 package to get the
>>> private tools.
>>> Currently in the toolset beside this one are some 0days against *BSD and
>>> Linux and something against Windows which I still need to confirm :-)
>>> BUT - I plan to release at least my scan engine this year. the rest when
>>> it is fixed.
>> That's very interesting, thank you to let me know.
>> Cheers
> --
> --
> Marc Heuse
> Mobil: +49 177 9611560
> Fax: +49 30 37309726
> www.mh-sec.de
> Marc Heuse - IT-Security Consulting
> Winsstr. 68
> 10405 Berlin
> Ust.-Ident.-Nr.: DE244222388
> PGP: FEDD 5B50 C087 F8DF 5CB9  876F 7FDD E533 BF4F 891A
> _______________________________________________
> Ipv6hackers mailing list
> Ipv6hackers at lists.si6networks.com
> http://lists.si6networks.com/listinfo/ipv6hackers

Marco Ermini
root at human # mount -t life -o ro /dev/dna /genetic/research
"Jesus saves... but Buddha makes incremental back-ups!"

More information about the Ipv6hackers mailing list