forked from vanhauser-thc/thc-ipv6
-
Notifications
You must be signed in to change notification settings - Fork 0
/
CHANGES
627 lines (571 loc) · 26.7 KB
/
CHANGES
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
CHANGELOG
=========
v3.7-dev
* your patch? :)
* fixed crash in thcping6 with -n 0 or larger values
v3.6/v3.5-dev
* long interface names are now supported. Thanks to Christophe Desoutter@Airbus for the patch!
* added error check for openssl BN_ functions (thanks to lc3412)
* added support for global destinations for dump_dhcp6
* added new tool: connect6, useful for tcp6 connect pings
* added -i microseconds interval option for smurf6 and thcsyn6 (thanks to shellqiqi@github)
* added -w timeout option to thcping6
v3.4/v3.3-dev
* Added new function to thc-ipv6-lib: thc_send_raguard_bypass6()
bypass attack found by ERNW in one easy function.
* Added RA guard bypass attack (F option) to:
- fake_router26
- flood_router26
- fake_advertise6
* added new tool: flood_unreach6 (black nurse attack)
* fake_pim6:
- added bootstrap and assert support
- added loop mode
- added flood mode
- rewrote help output
- some fixes
* fuzz_ip6: added PIM hello, bootstrap and assert support
* alive6: fix for IPv6 address display for unreachable dst reason
* implementation6: large fragmentation EH test added
* covert_send6d: fixed receiving multiple packets (thanks to mculig for reporting)
* better automatic source adress type selection
* added patch to support the horrible openssl-1.1 release
* some minor enhancements and fixes
v3.2/v3.1-dev
* added toobigsniff6: send ICMPv6 toobig messages for sniffed traffic
* added alive2map.sh script to create a network map (graphviz->jpg) from a list of alive hosts
* alive6: fixed displaying right source of one packet type
* dump_router6: added -S option to specify an IPv6 source address
* fake_router26: new -f option to specify the sending mac address (thanks to Scott Winegarden for the patch)
* thcsyn6: added -f and -d options
* flood_router26:
- added -m option to force DHCPv6 managed and other configuration
- reduced lifetime for -s option to 1s
* dnssecwalk: added TCP mode (-t)
* dnsrevenum6: added TCP mode (-t)
* fake_advertise6: a second packet always was sent with no flags. fixed. thanks to Christopher Werny@ERNW for reporting
* flood_rs6 and thcping6: small fixes
* re-enabled raw mode, works now with modern kernels it seems
* small reliability patches by Benjamin Kellermann, thanks!
* added man page auto generator by Benjamin Kellermann, thanks!
* small change to the Makefile to allow installation even if not everything could be compiled (libraries missing)
v3.0 release
* fragrouter6 (NEW TOOL)
- evade IDS easily and use all your favorite IPv6 attack tools
* connsplit6 (NEW TOOL)
- split up a connection so that replies are sent to a different IPv6 address
* *.sh
- added a lot of shell helper scripted for zone transfers, creating maps, etc.
- 6to4test.sh, create_network_map.sh, extract_hosts6.sh, six2four.sh,
axfr-reverse.sh, axfr.sh, dnsrevenum6.sh, extract_networks6.sh,
thc-ipv6-setup.sh, dnssecwalk.sh, trace62list.sh, dos_mld6.sh, local_discovery6.sh
* alive6:
- -r renew option was accidently always on by default
- added -I /mask random source option
- restructured the -h help output
* fake_router26:
- option -X removes router entry from targets on exit (patch from Dan Luedtke, thanks)
* flood_router26:
- fix: the source mac was always null bytes without evasion, thank to Christopher Werny for reporting
* ndpexaust26:
- option -m generates maximum size packets
* dump_router6:
- fixed route option parsing
- support for new RA options
* dump_dhcp6
- added vendorID support for request
* thcping6:
- added -O TCP Fast Open cookie request option
* fuzz_dhcps6
- enhancements to the help output
- added -w sec wait between packets option
- added more options to the solicitate request to fuzz
* thcping6:
- added -O TCP Fast Open cookie request option
* thcsyn6
- added -O TCP Fast Open fake cookie sending option
- fixed memory leak
* Renamed dos_mld.sh to dos_mld6.sh and local_discovery.sh to local_discovery6.sh
v2.7 public release (31C3)
v2.6 private release
* All flood_* tools:
- changed destination so that targets can be remote.
Yes this *should* have no impact, but sometimes it does :-)
* New tool: fragrouter6 - IDS evasion plus script fragrouter6.sh
* New tool: fuzz_dhcpc6 - DHCPv6 client fuzzer, submitted by Darrell Ambro, thanks a lot!
* Added new script: alive2map.sh for magic network map generation :-)
* alive6:
- setting -C twice increases the common address search space significantly
- fixed from-to definition implementation
- added "-y step" option, to define the step range when performing from-to
scans (e.g. 2001:1::0-ff), default step range is of course 1, max is 256
- selects the source IPv6 address for every new target now; waiting, if no
fitting IPv6 address is present on the interface until one is
- if you use -s for alive scanning, the new "one packet fingerprinting" functionality
is automatically used, courtesy of warlord @ nologin from his poison tool
- error message if a packet can not be send for >50ms, and waiting for 60 seconds
- cleaned up help output and add -hh more help/options output
* thcsyn6:
- added -m dstmac option (good for DOSing local, esp. hot standby addresses)
- added -d dst hdr option
- documented -a hbh-ra option
* denial6:
- added five more test cases with HBH-RA and AH headers
* flood_router26
- added -a hopbyhop with router alert option
- changed a default so the attacks do not show up in Snort IDS
* flood_redir6
- added -a hopbyhop with router alert option
* flood_solicitate6
- added query address parameter option
- added -a hopbyhop with router alert option
* fuzz_ip6:
- fixes for HBH and DST EH fuzzing
* thcping6:
- added -x flood option
- added -e ethertype option
- added -V IP version option
- added -L payload length option
- added -N next header option
- now prints fragID of fragmented replies
* implementation6:
- a few more test cases and fixes
* dump_dhcp6
- more option decoding, better solicitate packet
- added sending information request packet
* four2six:
- support for source port and ping ID (required for AFTR)
* trace6:
- support for MTU sizes > 2500 added
* implementation6
- fixed to test cases where the wrong fragment nxt header was set (thanks to Gabriel Bertram for reporting)
* inverse_lookup6
- fixed to display only the IPv6 addresses (and not interpret other data as such)
* thc-ipv6-lib
- global addresses are now prefered over unique local if no destination is set
- fixed a bug in IPv4 CRC calculation function
* cppcheck and Coverity issues checked and fixed
* added spelling fixes by Debian maintainers
v2.5 public release
v2.4 private release
* Moved the license from GPLv3 to AGPLv3 (see LICENSE file)
* Support for big endian processors added
* Added new tool: fuzz_dhcps6 - DHCPv6 server fuzzer. Submitted by Brandon
Hutcheson, Graeme Neilson and Ryan Ko - great job, thanks!
* Added new tool: flood_redir6 - flooding with ICMPv6 redirects
* Added new tool: flood_rs6 - flooding with ICMPv6 Router Soliciations
* Added new tool: four2six - send an IPv4 packet via a 4to6 gateway
* Added new tool: dump_dhcp6 - show all DHCP6 servers and their config
* Added new script: six2four.sh - send an IPv6 packet via a 6to4 gateway
* All flooding tools:
- support now a specific target instead of all local nodes
- printing a dot for each 1000 packets sent (before: 100)
* alive6:
- added -4 IPv6address/range option
- added -H option to print the hop count value of received packets
- added -L option to only report local alive systems
- added -P option to only print addresses that would be scanned, but no scanning
- added -R option to not consider TCP-RST packets as alive signals
- NDP alives now also get their MAC addresses printed
- reworked help output, simple help screen with no option, full help with -h parameter
- clarified that ranges (from-to) should not be used together with -D -M or -4
- -W option waited for micro not milliseconds, fixed
* flood_router26
- added -S slow start option which makes the flooding a bit more effective
- added -G gigantic packet option (64kb, fragmented)
- increased number of route/prefix entries in normal (non -G option) packets
- rewrote the help screen
* flood_advertise6 + fake_advertise6
- added -k and -m option to specify source MAC address
* thcsyn6:
- changed to also allow syn flooding on link local
* parasite6:
- added ROUTER flag to all packets to prevent being removed from the routing list
* trace6:
- added -u UDP switch
- fixed bug that showed targets sometimes too far away
- fixed -E option
- fixed millisecond printing
* thcping6:
- added -n count switch
- added -T icmptype and -C icmpcode options
- rewrote help output, added -h extra output, minimal otherwise
* dnsdict6:
- enhanced and updated the dictionaries
- added additonal "u"ber large dictionary with -u option
- added -e optiont to ignore "no NS for domain" errors
* fragmentation6:
- added multi-level-fragment tests
- no screen flooding in flooding mode anymore
* fake_solicitate6
- src address is now by default the own link-local address unless specified different
* firewall6:
- added -H option to show hop count of pkts received
* randicmp6:
- added -p option which will not print replies and not wait (good for flooding tests)
* thc-ipv6-lib:
- added thc_add_ipv4_rudimentary function needed for the new four2six tool,
so far only ICMPv4 ping and UDP is supported.
- renamed thc_create_ipv6 to thc_create_ipv6_extended, and added a simpler
thc_create_ipv6 function
- 801.q VLAN IDs can now have the proper range of up to 4095
- injection sniffing - some tcpdump seem not to be able to sniff on ether proto
* massive error checking and compiler warnings eliminated
* Updated documentation and man page
* Incorporated Debian maintainer patches: man page additions and spelling fixes
v2.3 public release
(released)
v2.2 private release
* Added new tool: thcsyn6 - a TCP flooding tool
* Added new tool: redirsniff6 - redirects traffic (sniff variant to redir6)
* Added new script: thc-ipv6-setup.sh - configuring Linux for thc-ipv6
* Added new script: 6to4test.sh - check an ipv4 address for dynamic 6to4 tunnel
* flood_router26: added -s option for small lifetime which makes the attack even more devasting
* trace6:
- added -B option for sending echo reply packets (will not show the destination)
- added -E option for sending destination headers with invalid option
* thcping6:
- -U/-S port options now also set the source port
- -U/-S options now also send data if given
- -f fragment option can now be used multiple times
* implementation6:
- fixed bug in test case
- added icmp6 type/code printing for error replies
* fake_advertise6: more command line options to control all necessary aspects
* toobig6: added -u option to allow testing for unrelated ICMPv6 packet firewall bypasses
* firewall6: added more test cases
* thc-ipv6-lib:
- fixed address selection bug if both global and ULA addresses were present
- changed NDP to use ff02::1:ffxx:xxx limited multicast addresses
- thc_resolve6 ignores now anything after a "/" or in before/after "[]"
* in new alive6:
- hidden portscan option (-s "portscan") to be able to TCP-SYN
portscan in injection environments
- new option -x to define the source port for tcp and udp packets
- new option -T allows sending a fixed string as a packet tag in the data
v2.1
* alive6: ranges are now supported in the input file too
* added dnssecwalk to the thc-ipv6 package and included IPv6+IPv4 resolving
* parasite6: enhancements to make it way more effective
* fake_router26: added overlap RA guard evasion type (-E o, -E O)
* dos-new-ip6: fix that only DAD replies are sent, not full NDP spoofing :-) (thanks to Johannes Weber for reporting)
* flood_router26: Added local LAN privacy extension prevention attack by George Kargiotakis
* randicmp6:
- added function which dumps icmp answers received
- added funtionality to send a specific type (and also code)
* dnsdict6: added SRV result address resolving
* trace6: fix for routers which add padding to the packets
* fuzz_ip6: added -X option for not sending a transport layer
* firewall6:
- two more overlapping test cases
- source port test cases
* fake_advertise6: when no srcmac was specified, it was sent as all zeroes
instead of the real mac (thanks to Jannes Weber for reporting)
* inject_alive6: added -a option to allow selective active alive sending
* thc-ipv6-lib: added function thc_send_as_overlapping_{first,last}_fragment6
* Added GPL exception clause to license to allow linking to OpenSSL - debian people need this
* Makefile: added patch from gentoo maintainers
v2.0 - PUBLIC
* Added VLAN-Q, PPPoE and 6in4 injection support!
See the file HOWTO-INJECT for details
* added new tool: inject_alive6 - keeps a PPPoE/6in4 tunnel alive if you
disconnect the client tunnel endpoint
* added new tool: ndpexhaust26 - very performant ndp exhauster based on
ICMP error toobig messages but can send many types of packets
* added new tool: firewall6 - various TCP/UDP ACL bypass test cases
* added new tool: fake_pim6 - send fake hello and join/prune pim messages
* alive6:
- added support for replies with fragmentation header
- -s/-a/-u options would send also bad dst hdr packets, fixed
- having a '-' in the dns name was not working
* trace6:
- added -b option for stealthy tracerouting
- fixed -a option reply packet analysis
- added -F and -D options to add frag & dst headers, not documented
- if the destination is not reached, print three ??? entries and warn
* thcping6:
- added -D xxx fragmenting large destination header option
- added -q for hop-by-hop quickstart option
* fake_dns6d: specified a wrong listen port, silly me
* fake_router26: added -L DNS searchlist option
* fuzz_ip6:
- RA: added DNS searchlist, and extended flag options
- added node information query fuzzing (-0), renamed TCP fuzzing to -s
* toobig6: no restriction on mtu value anymore
* dnsrevenum6: switched the output printing order
* exploit6: fixed a crash in test case 4
* implementation6: enhancements to not run into icmp error rate limiting
* thc-ipv6-lib:
- more intelligent source address selection
- fixed crash in toobig function
- better support of broken fragmentation implementations
- added thc_add_pim() function and overall PIM packet creation
* OpenSSL is now optional, if not present, comment out HAVE_SSL in the Makefile
* added trace62list.sh and create_network_map.sh to create network topology
map images from trace6 output files
v1.9 - PUBLIC
* added new tool: detect_sniffer6 (Windows, Linux, *BSD, OS X, ...)
* added new tool: connect6 for various IPv6 TCP connection stuff
* added new tool: fake_router26 which gives more control on options
* added new tool: dnsrevenum6 which reverse enumerates the DNS
* added new tool: inverse_lookup6 which gets the IPv6 addresses of a mac address
* added new tool: fake_solicitate6 which lets you fake neighbor solicate packets
* added new tool: address6 converts between ipv6 <=> ipv4 and mac addresses
* added new tool: flood_router26, more effective by many prefix & route
entries in each packet
* added new tool: passive_discovery6 which detects all sending systems
and includes DAD detection
* alive6:
- new -I srcip6 option to allow choosing the source IPv6 address to use
- fixed a bug in alive6 for hop-by-hop option
- expanded waiting time for link local scans
- now returns 0 when hosts were found alive, 1 when not (for alive scripting)
* parasite6:
- fixed a crash when -F and -R were used together
- parasite6 now terminates as it should, also ending childrens when using -l
- the mac command line parameter was not working
* fuzz_ip6:
- added TCP (-0 port) to the fuzzer with tstamp, mss + wscale options
- return code 0 on tests done and target alive, 1 on target crashed
* thcping6:
- added -U udp option
- return code -1 no reply, 0 reply, 1 error reply
* implementation6:
- added more tests (AH + ESP ping tests, 8k exthdr, 2k exthdr size)
- fixes for some tests
- returns -1 on errors, 0 if at least one reply, 1 if no or only error replies
* detect-new-ip6: now the interface is passed as 2nd cmdline option to the
script
* dnsdic6:
- added full SRV service scan support (-S option)
- fix for x64 systems, thanks to alphacc(at)altern(dot)org
- some more minor fixes
* trace6:
- fixed a crash
- made it a bit faster
- fix for targets further away than 18 hops
- enhanced error messages
* kill_router6: fixed '*' target option
* dos-new-ip6: also DOSes non-link-local addresses now
* toobig6: fixed crash when mtu size specified was < 47
* send errors dont result in program exits for flood_*, fuzz_ip6 and
ndpexhaust6 tools anymore
* thc-ipv6-lib:
- changed the thc_pcap_function to
* have a an addition parameter, promisc (before it was not promiscous)
* reduce CPU load, which affects detect-new-ip6, dos-new-ip6 and parasite6
- changed some function defines from/to signed/unsigned
* cleaned up the code
v1.8 - PUBLIC
* included all tools except alive26
v1.7 - PRIVATE
* fake_advertise6: added one more ND Security bypass (-D)
* fake_router6:
- added unicast reply to router solicitation requests
- added one more ND Security bypass (-D)
* parasite6:
- added -R option to also inject the reverse route
- added one more ND Security bypass (-D)
* flood_router6: one more RA guard bypass (-D)
* alive6:
- important fix for hopbyhop/dst header packet types (ff02::1)!
- expanded dictionary by results from the ipv6 world day scanning
* dnsdict6:
- expanded dictionary by results from the ipv6 world day scanning
- added IPv4 support for selfish reasons. I'm sorry! ;-)
* thcping6:
- -D renamed to -F
- new -D/-H option to specify options in hopbyhop and destination headers
- fragment header moved before other headers (except hop-by-hop)
* added new tool flood_solicitate6
* added new tool kill_router6
* added new tool fake_dnsupdate6
* added new tool node_query6
* added new tool dump_router6
* added new tool sendpeesmp6 by Marcin Pohl
* added new tool randicmp6 by ecore
* added new tool ndpexhaust6 by mario fleischmann
* added two alternate alive6/parasite6 tools by Fabricio Nogueira Buzeto
and Carlos Botelho De Paula Filho, it can be found in the contrib/ directory
* added helper scripts extract_{network,host}s.sh
* speed improvements for flood_* tools
* added nmap support to dnsdictalive.sh (needs at least v5.59BETA)
* thc-ipv6-lib:
- fixed class assignment to ipv6 packet creation
- forgot some fclose()es thanks to mario fleischmann for reporting
- first OS/X porting diff sent in by oskar (at) acm (dot) org, thanks!
v1.6 - PUBLIC
* removed various tools for public release
v1.5 - PRIVATE
* redir6:
- TTL enhancement by frederik(at)kriewitz(dot)eu
- timing enhancement by me
* toobig6: added TTL, timing and packet size enhancement
* parasite6:
- added -l (loop) option
- ND security evasion added :-)
* fake_advertise6:
- added src ip option
- added ND security evasion options
* trace6:
- added tunnel detection and identification mode (-t)
- only up to the 13th hop was reported, fixed
- added patch by Phillipe Langlois for -s sourceipv6 option
* alive6:
- print original dst ports for packet replies
- print original dst ipv6 for icmp errors
- if -p was specified, sending dst opt error pkt was not disabled
* thcping6: rewrote thcping6 for more options and packet timing
* fake_router6:
- the interface MTU is used as default now
- added RA guard evasion options
* flood_router6: RA guard evasion options added :-)
* frag_id_attack: lots of more tests and cmdline options
* implementation6: more test cases
* dnsdict6:
- implemended 4 different wordlists in dnsdict6 (-s, -m, -l, -x switches)
- better wildcard detection
- added -d switch to dump IPv6 NS and MX information
- added check for -t max
* added comfortable dnsdictalive.sh script to dnsbrute+alivescan a domain
* thc-ipv6-lib:
- added thc_ipv62notation function
- added thc_add_hdr_oneshotfragment function
- fixed neighbor mac solicitation function for FreeBSD targets
- better own ipv6 address selection
* added usage of thc_ipv62notation function to all tools
v1.4 - December 2010 - PUBLIC
* removed various tools for public release
v1.3 - PRIVATE
* added covert_send6 and covert_send6d
* added fake_dhcps6 - fake dhcp6 server
* added flood_dhcpc6 - dhcp6 flooder
* added fake_dns6 - fake dns server, serving only one ipv6 address :-)
* added fake_mld26 (same as fake_mld6 but for MLDv2)
* added flood_mld6 - flood network with mld messages
* added flood_mld26 - flood network with mldv2 messages
* added fake_mldrouter6 - fake an mld router
* added flood_mldrouter6 - flood network with mld router messages
* added exploit6 and the first test cases
* added denial6 and the first test cases
* added dos_mld.sh which disables outside multicast traffic to the local LAN
* alive6:
- beautified alive ipv6 address output
- added -i inputfile and -o outputfile options
- added -M for mac enumeration mode (autoconfiguration address space)
- added -D for dhcp6 enumeration mode
- added range possibility, e.g. "alive6 eth0 2002:0-2:0-10"
- added -s/-a-/-u TCP SYN/ACK and UDP alive scan mode
- added -F firewall quick port setup mode (tcp-syn to 22, 25, 80, 443;
udp dns request; tcp-ack to highport, ping and destination error)
- added -p and -e icmp and error alive check modes
- changed hop-by-hop error check to destination error check
- alive reply type is now printed
- printing now warnings if icmp destination unreachables are received (-v)
- added new -S slow, -W waittime,-d resolve, -v verbose switches
- added new -Z dstmac option
- removed hop check, changed to dst hdr, and made it the default
- removed memory leaks
* fake_mld6:
- added query and done MLD types
- new command line option -l = loop
- command line format changed
- added target mac option, needed for new vulnerablity found
* dnsdict6:
- added 87 more entries to the dictionary
- now identified even multiple wildcard IPs and displays them accordingly
- now prints the number of unique IPv6 addresses founds
* fuzz_ip6:
- added fuzzing query, report and done MLD + query and report MLDv2 types
- fuzzing first and last two bytes of IPv6 addresses in the packets
- command line option for specifying an IPv6 address within the packets
- added many options
* trace6:
- added unreachable detection
- added more informative output
- now multiple run save
- fixed a core dump which happened on rare occasions
* changed command line options for fake_router6 to allow specification of DNS
* toobig6: tighter mtu and removed debug output still present in the code, oops
* implementation6: added three more test cases, enhanced four test cases, bugfix
* compile warning fixes (dnsdict6, sendpees6, thc-ipv6-lib)
* Makefile beautification and header fixes by xmw<at>gentoo<dot>org
* library:
- BUG: raw mode does not work! Needs to be implemented properly by someone :-)
- imporant fix for gathering a local mac, required for Mac OS/X targets
- added thc_pcap_init_promisc function (required for new fake_mld6 functionality)
- added thc_is_dst_local function (required for new alive6 functionality)
- added thc_add_udp function (required for new alive6 functionality)
- added thc_bind_udp_port function (required for fake_dhcps6)
- added thc_bind_multicast_to_socket (required for fake_dhcps6)
- added thc_ipv6_show_errors function to toggle error messages from library
- optimization in thc_send_as_fragment6 to only get MACs once :-)
- fix for max offset in thc_add_hdr_fragment, plus bad value check
- fix for beautification ipv6 address output function
- looked for memory leaks and removed all I found
- for performance reasons also stale neighbor mac entries are used now
- made library thread safe, for this to work I:
~ changed thc_pcap_check/thc_pcap_function to add an option
~ removed some global variables
=> remaining variables are ok to be global
v1.2 - June 2010
* compile fixes
* test case added to implementation6
v1.1 - June 2010
* dnsdict6: big wordlist update
* upgraded thc-ipv6 license to GPLv3
v1.0 - May 2010 - PRIVATE
* beta release
v0.9 - April/May 2010 - PRIVATE
* added dnsdict6
* added trace6
* added flood_router6
* added flood_advertise6
* added fuzz_ip6
* added implementation6d
* implementation6:
- renamed from test_implementation6
- added A LOT of test cases and reply checks
* fake_router6:
- changed command line options
- added default route entry (not supported by many systems though)
- added DNS server ip (the official dns multicast address)
- small fixes
* alive6:
- small fixes
- added -l switch for using the link layer address
* library:
- fixed a big bug in the routing module, library thought sometimes a
remote network is local!
- fixed a bug where a hard/permanent set mac for a destination would
not be found when the dst is not alive
- now chooses an alternate IP6 address when the prefered one
is not available (link vs. global)
- fixed TTL setting when using raw mode
- supporting mobile home address option in dst option (for checksum)
- pcap was opened in promisc mode - shouldnt have been, unnecessary
- valid icmp checksum for mobile home address and routing pointer == 0
- TCP can be now added as a header too + checksum calculation, but
not for inverse_packet (yet - no application for that currently).
v0.8 - June 2007 - PRIVATE
* Clarified License: GPL 2
* Improved Makefile
* Added a man page for all tools together (by gebi(at)grml.org)
v0.7 - AUGUST 2006 - BETA
* Added sendpees6.c and a patch from [email protected] - thanks a lot!
(its a new DOS attack)
v0.6 - MARCH 2006 - BETA
* Added fake_mipv6 tool to spoof mobile ipv6 binding updates
* Fixed a bug in the thc_toobig6 and some other thc_ icmp6 lib functions
v0.5 - FEBRUARY 2006 - ALPHA
* Added RAW mode, just add -r as 1st option to most tools
v0.4 - FEBRUARY 2006 - ALPHA
* Added fake_mld6 tool
v0.3 - JANUARY 2006 - ALPHA
* Added detect-new-ip6 tool
* Added function to get the mac from the ipv6 neighbor cache, thanks to
dan kaminsky
* It finally has a README which describes the thc-ipv6-lib.c interface
(roughly though, but anyway, now there is at least *something*)
v0.2 - NOVEMBER 2005 - ALPHA
* First release