Secondary Categories: 02-Lateral Movement, 02-Credential Access
Leveraging IPv6
A majority of the networks that I have encountered on engagements do not utilize IPv6 and most of the time the client may not know that IPv6 is enabled by default. A workstation will send out DHCPv6 broadcast request looking for a DHCPv6 server. From an attackers point of view we can leverage this by responding to these request by utilizing mitm6
sudo mitm6 -d $domain
There may be times when a request is sent by a workstation that is not within the domain. This is usually the case when a client has a non-domain joined system on the LAN. In order to ignore those DHCPv6 request we can use the following flag:
sudo mitm6 -d $domain --ignore-nofqnd
Resources:
Title | URL |
---|---|
place | holder |
Also Check Out:
- PLACEHOLDER