Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: EXPERT IPv6 network scaning

From: "Weilin (William) Xu" <mzweilin () gmail com>
Date: Wed, 28 Mar 2012 10:11:09 +0800
On Wed, Mar 28, 2012 at 2:31 AM, niteesh kumar <niteesh3 () gmail com> wrote:


On Tue, Mar 27, 2012 at 10:30 PM, David Fifield <david () bamsoftware com

wrote:



On Tue, Mar 27, 2012 at 10:17:56PM +0530, niteesh kumar wrote:

On Tue, Mar 27, 2012 at 4:42 AM, David Fifield <david () bamsoftware com
wrote:

I'm interested in what you were able to find using MLD probes. Can

you

share the tools or commands that you used to run this test?


I did not use any specific tool, i wrote c code to generate  these

packets

and send.I I found that these messages canbe used to scan LAN to get
knowledge of  present hosts in the network with only single probe.


That's what I'm asking, is your source code online somewhere?

David Fifield


PFA contains the c function i used to send the MLD probes
i observed the responses in wireshark

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/




Hi Niteesh,

Could you show your .pcap file here? I'm interested in your test and I
would like to reproduce it in my test bed with more than 100 hosts.

BTW, we often use scapy to construct packets. The next line will construct
a basic MLD query packet, and most necessary fields values can be defined.


pkt =

Ether()/IPv6(dst="ff02::1")/IPv6ExtHdrHopByHop(nh=0x3a)/ICMPv6MLQuery()

-- 
Regards,
Weilin (William) Xu 许伟林
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/
Previous By Date Next
Previous By Thread Next

Current thread: