MITM All The IPv6 Things

Presented at DEF CON 21 (2013), Aug. 2, 2013, 2 p.m. (20 minutes).

Back in 2011, Alec Waters demonstrated how to overlay a malicious IPv6 network on top of an IPv4-only network, so that an attacker can carry out man-in-the-middle attacks on IPv4 traffic and subvert the assumed end to end security model. This attack is potentially powerful but requires involves a complex series of manual system configuration and setup activities, including the use of experimental and since-deprecated techniques. In addition, technology updates rendered Waters' implementation of the attack ineffective on certain platforms, such as Windows 8.

We reviewed the attack and tried it against current operating systems. We found configuration updates were needed to make it work against Windows 8 hosts and have packaged our setup into a script called "Sudden Six" to make launching the attack quick and painless. This attack now works against a variety of different platforms and operating systems, which will allow you to man-in-the-middle IPv6 traffic in record time.

This talk will discuss how the attack works as well as discuss our automation strategy and some pitfalls we uncovered. The "Sudden Six" configuration utility will be released and a demonstration of the attack against Windows 8 will be provided.


Presenters:

Links:

Similar Presentations: