[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    Re: [oss-security] Interesting blog entry - Finding v6 hosts by efficiently mapping ip6.arpa
From:       Florian Weimer <fw () deneb ! enyo ! de>
Date:       2012-03-29 20:39:17
Message-ID: 87y5qjjg5m.fsf () mid ! deneb ! enyo ! de
[Download RAW message or body]

* Kurt Seifried:

> http://7bits.nl/blog/2012/03/26/finding-v6-hosts-by-efficiently-mapping-ip6-arpa

It works.  I have used it for enumerating the e164.arpa tree, which
has a similarly regular structure, too, and for finding TLDs which
have redirected second level domains on ISC's Dnschanger replacement
name servers.

> If this works it would make network scanning a whole heck of a lot
> easier.

Reverse delegation is still not fully solved with IPv6 (and will
probably never be), so non-synthetic answers will be rare.
Particularly for anything which doesn't speak SMTP.

If you want to use DNS to facility IPv6 scanning, you probably should
store every AAAA you see in a database.
[prev in list] [next in list] [prev in thread] [next in thread]