oss-sec mailing list archives
Re: Interesting blog entry - Finding v6 hosts by efficiently mapping ip6.arpa
From: Florian Weimer <fw () deneb enyo de>
Date: Thu, 29 Mar 2012 22:39:17 +0200
* Kurt Seifried:
http://7bits.nl/blog/2012/03/26/finding-v6-hosts-by-efficiently-mapping-ip6-arpa
It works. I have used it for enumerating the e164.arpa tree, which has a similarly regular structure, too, and for finding TLDs which have redirected second level domains on ISC's Dnschanger replacement name servers.
If this works it would make network scanning a whole heck of a lot easier.
Reverse delegation is still not fully solved with IPv6 (and will probably never be), so non-synthetic answers will be rare. Particularly for anything which doesn't speak SMTP. If you want to use DNS to facility IPv6 scanning, you probably should store every AAAA you see in a database.
Current thread:
- Interesting blog entry - Finding v6 hosts by efficiently mapping ip6.arpa Kurt Seifried (Mar 28)
- Re: Interesting blog entry - Finding v6 hosts by efficiently mapping ip6.arpa Florian Weimer (Mar 29)