Secondary Categories: 02-Lateral Movement, 02-Credential Access

Leveraging IPv6

A majority of the networks that I have encountered on engagements do not utilize IPv6 and most of the time the client may not know that IPv6 is enabled by default. A workstation will send out DHCPv6 broadcast request looking for a DHCPv6 server. From an attackers point of view we can leverage this by responding to these request by utilizing mitm6

sudo mitm6 -d $domain

There may be times when a request is sent by a workstation that is not within the domain. This is usually the case when a client has a non-domain joined system on the LAN. In order to ignore those DHCPv6 request we can use the following flag:

sudo mitm6 -d $domain --ignore-nofqnd

Resources:

TitleURL
placeholder

Also Check Out:

  • PLACEHOLDER