A Light-Weight Penetration Test Tool for IPv6 Threats

As the Internet has become more and more popular, there are already over 2.3 billion people using Internet. However, the amount of available IPv4 addresses only has about 250 million. Although some solutions for saving the IPv4 shortage problem, like NAT or CIDR, were applied, the best way for solving the IPv4 shortage is using IPv6 addresses. Because the protocol between the IPv4 and IPv6 address is not compatible, the dual stack solution may be needed to support IPv4 and IPv6 networks. Hence, the organization facing the threats from both IPv4 and IPv6 networks will be a critical issue. In this paper, we proposed a light-weight penetration test tool for IPv6 threats to detect vulnerability in the network environment. In the proposed system, we first use common IPv6 attack tool to generate IPv6 attack signatures to attack a virtual victim. A sniffer will be used to observe network package to check whether it meets pre-defined signatures. The proposed system will generate a report to tell network administrators if the IPv6 network is vulnerable or not.