[SPS] Simple Packet Sender

A Linux packet crafting tool. Supports IPv4, IPv6 including extension headers, and tunneling IPv6 over IPv4. Written in C on Linux with GUI built using GTK+ and released under GPLv3. Does not require pcap.

Features:

Packet crafting and sending one, multiple, or flooding IPv4 and IPv6 packets of type TCP, ICMP, or UDP (or cycle through all three). All values within ethernet frame can be modified arbitrarily. Supports IPv4 header options, TCP header options, and TCP, ICMP and UDP data as well, input from either: keyboard as UTF-8/ASCII, keyboard as hexadecimal, or from file.

IPv6 support includes: hop-by-hop, "first" and "last" destination, routing, authentication, and encapsulating security payload (ESP) extension headers. For those without access to a native IPv6 network, IPv6 packets can be transmitted over IPv4 (6to4).

Packet fragmentation for IPv4, IPv6, and 6to4. Assumed maximum transmission unit (MTU) can be changed if unusual fragment sizes are needed.

IP addresses and port numbers can be randomized.

A configurable traceroute function, which supports TCP, ICMP, and UDP packets with all the features mentioned above.

View packets in hexadecimal/ASCII representation, in both unfragmented and fragmented forms.

All packet settings can be saved to and loaded from file.

IP and ASN delegation functions, including: country name/code search and reverse-search, autonomous system (AS) number search by country and reverse-search,  IPv4 and IPv6 address delegation search and reverse-search.

ARP (IPv4) and Neighbor Discovery (IPv6) for querying a LAN for MAC addresses of local nodes.

Retrieve MAC address and current MTU setting of any attached network interface.

Domain name resolution and reverse resolution.

Download SPS

Read more

[IPv6 Toolkit v1.5.2] A security assessment and troubleshooting tool for the IPv6 protocols

A security assessment and troubleshooting tool for the IPv6 protocols.

Changelog v1.5.2

• Add support for GNU Debian/kfreebsd. The toolkit would not build on GNU Debian/kfreebsd before this release.
• Add support for TCP/IPv6 probes. tcp6 can now send TCP/IPv6 packets (“–probe-mode” option), and read the TCP response packets, if any. This can be leveraged for port scans, and miscellaneous measurements.

Supported platforms

• The following platforms are supported: FreeBSD, NetBSD, OpenBSD, Linux, and Mac OS.

List of Tools and Manual Pages

• flow6: A tool to perform a security asseessment of the IPv6 Flow Label.
• frag6: A tool to perform IPv6 fragmentation-based attacks and to perform a security assessment of a number of fragmentation-related aspects.
• icmp6: A tool to perform attacks based on ICMPv6 error messages.
• jumbo6: A tool to assess potential flaws in the handling of IPv6 Jumbograms.
• na6: A tool to send arbitrary Neighbor Advertisement messages.
• ni6: A tool to send arbitrary ICMPv6 Node Information messages, and assess possible flaws in the processing of such packets.
• ns6: A tool to send arbitrary Neighbor Solicitation messages.
• ra6: A tool to send arbitrary Router Advertisement messages.
• rd6: A tool to send arbitrary ICMPv6 Redirect messages.
• rs6: A tool to send arbitrary Router Solicitation messages.
• scan6: An IPv6 address scanning tool.
• tcp6: A tool to send arbitrary TCP segments and perform a variety of TCP-based attacks.

Download IPv6 Toolkit v1.5.2

Read more

[Evil Foca] IPv4 and IPv6 Penetration testing tool

Evil Foca is a tool for Pentesters and Security Auditors to perform security testing in IPv4/ IPv6 data networks.

• The tool is capable to do different attacks such as:
• MITM on IPv4 networks using ARP Spoofing and DHCP ACK injection.
• MITM on IPv6 networks using Neighbor Advertisement Spoofing, SLAAC Attack, fake DHCPv6.
• DoS (Denial of Service) on IPv4 networks using ARP Spoofing.
• DoS (Denial of Service) on IPv6 networks using SLAAC Attack.
• DNS Hijacking. 

Download Evil Foca

Read more