[ipv6hackers] Slides from IPv6 Sec Summit
Antonios Atlasis
antonios.atlasis at gmail.com
Wed Mar 13 11:53:27 CET 2013
Hi Rafa,
the talk wasn't just about TCP port scanning without being detected by
Snort, as it is TOPERA, and generally speaking not just about evading IDS.
It also discusses several other security issues, from OS fingerprinting and
covert channels to firewall evasions (ubder specific circumstances). People
that participated at the live workshops afterwards, know what I mean. But,
the goal of this presentation, if you check the last slide, was not just to
show a dozen of tricks (either new or not) or to provide a few scripts, but
to raise some questions and start a discussion regarding:
a. whether the approach defined in several RFCs is adequate, from a
security perspective, or not.
b. whether the various vendors' implementation (from OS to security/network
devices) meet the various standards.
c. how can we fix them to make the IPv6 world safer (the goal of Troopers)
Regards
Antonios
2013/3/12 Rafa Sanchez <rafa.sgomez at gmail.com>
> Hello!
>
> Interesting presentation indeed, but nothing new ... ;)
> If someone is interested in experimenting with IPv6 Extension Headers and
> Snort, we published TOPERA last year. TOPERA is a testing tool that can
> make TCP scans that avoid Snort detection capabilities.
> https://code.google.com/p/topera/
>
> By the way... a new version of TOPERA will be published soon...
>
> Greetings.
> Rafa Sánchez.
>
>
>
> On Mon, Mar 11, 2013 at 11:51 PM, Enno Rey <erey at ernw.de> wrote:
>
> > Hi,
> >
> > we just published some first slides of the IPv6 Sec Summit at our blog
> > www.insinuator.net.
> > Hope they might be useful for someone here and we're happy to get
> feedback
> > of any type...
> >
> > best
> >
> > Enno
> >
> >
> > --
> > Enno Rey
> >
> > ERNW GmbH - Carl-Bosch-Str. 4 - 69115 Heidelberg - www.ernw.de
> > Tel. +49 6221 480390 - Fax 6221 419008 - Cell +49 174 3082474
> > PGP FP 055F B3F3 FE9D 71DD C0D5 444E C611 033E 3296 1CC1
> >
> > Handelsregister Mannheim: HRB 337135
> > Geschaeftsfuehrer: Enno Rey
> >
> > =======================================================
> > Blog: www.insinuator.net || Conference: www.troopers.de
> > =======================================================
> > _______________________________________________
> > Ipv6hackers mailing list
> > Ipv6hackers at lists.si6networks.com
> > http://lists.si6networks.com/listinfo/ipv6hackers
> >
>
>
>
> --
> R/\f/\.
> _______________________________________________
> Ipv6hackers mailing list
> Ipv6hackers at lists.si6networks.com
> http://lists.si6networks.com/listinfo/ipv6hackers
>
--
=====================
Antonios Atlasis, PhD, MPhil
GXPN, GREM, GPEN, GWAPT, CCIH, GCIA
More information about the Ipv6hackers
mailing list