Changes

681 bytes added , 22:44, 20 December 2023

no edit summary

Line 1: Line 1: −

==IPv6 Port Scan Automation==

+

==IPscan IPv6 Port Scan Automation==

This section provides an overview of automated IPv6 firewall testing (IPv6 TCP and UDP port scans) using wget and IPscan.

Line 18: Line 18:

It is possible to request automatic scans using '''''wget''''' but the URLs must be constructed as shown below. In each case you '''MUST:'''

−

* target my IPv6 host and IPv6 cgi-bin directory (~~www6~~.chappell-family.co.uk/cgi-bin6/)

+

* target the IPscan IPv6 host and IPv6 cgi-bin directory (www66.chappell-family.co.uk/cgi-bin6/)

* use the text-browser compatible cgi target (ipscan-txt.cgi)

* include an includeexisting query term, setting it to either 1 (include default ports [[IPv6_Ports]]) or -1 (exclude default ports)

Line 53: Line 53: −

'''wget --no-proxy --output-document=ipv6.html <nowiki>"https://~~www6~~.chappell-family.co.uk/cgi-bin6/ipscan-txt.cgi?includeexisting=1&customport0=&customport1=&customport2=&customport3=&termsaccepted=1"</nowiki>'''

+

'''wget --no-proxy --output-document=ipv6.html <nowiki>"https://www66.chappell-family.co.uk/cgi-bin6/ipscan-txt.cgi?includeexisting=1&customport0=&customport1=&customport2=&customport3=&termsaccepted=1"</nowiki>'''

<pre>

−

--2012-01-28 14:28:03-- https://~~www6~~.chappell-family.co.uk/cgi-bin6/ipscan-txt.cgi?includeexisting=1&customport0=&customport1=&customport2=&customport3=

+

--2012-01-28 14:28:03-- https://www66.chappell-family.co.uk/cgi-bin6/ipscan-txt.cgi?includeexisting=1&customport0=&customport1=&customport2=&customport3=&termsaccepted=1

−

Resolving ~~www6~~.chappell-family.co.uk... 2001:470:~~1f08~~:~~185c~~::2

+

Resolving www66.chappell-family.co.uk... 2001:470:971f:99::6

−

Connecting to ~~www6~~.chappell-family.co.uk|2001:470:~~1f08~~:~~185c~~::2|:80... connected.

+

Connecting to www66.chappell-family.co.uk|2001:470:971f:99::6|:443... connected.

HTTP request sent, awaiting response... 200 OK

Length: 10147 (9.9K) [text/html]

Line 67: Line 67:

2012-01-28 14:28:03 (165 MB/s) - `ipv6.html' saved [10147/10147]

</pre>

−

===Testing the UDP ports and a single TCP port, e.g. 8080===

−

'''wget --no-proxy --output-document=ipv6.html <nowiki>"https://~~www6~~.chappell-family.co.uk/cgi-bin6/ipscan-txt.cgi?includeexisting=-1&customport0=8080&customport1=&customport2=&customport3=&termsaccepted=1"</nowiki>'''

+

'''wget --no-proxy --output-document=ipv6.html <nowiki>"https://www66.chappell-family.co.uk/cgi-bin6/ipscan-txt.cgi?includeexisting=-1&customport0=8080&customport1=&customport2=&customport3=&termsaccepted=1"</nowiki>'''

<pre>

−

--2012-01-28 14:37:21-- https://~~www6~~.chappell-family.co.uk/cgi-bin6/ipscan-txt.cgi?includeexisting=-1&customport0=8080&customport1=&customport2=&customport3=

+

--2012-01-28 14:37:21-- https://www66.chappell-family.co.uk/cgi-bin6/ipscan-txt.cgi?includeexisting=-1&customport0=8080&customport1=&customport2=&customport3=&termsaccepted=1

−

Resolving ~~www6~~.chappell-family.co.uk... 2001:470:~~1f08~~:~~185c~~::2

+

Resolving www66.chappell-family.co.uk... 2001:470:971f:99::6

−

Connecting to ~~www6~~.chappell-family.co.uk|2001:470:~~1f08~~:~~185c~~::2|:80... connected.

+

Connecting to www66.chappell-family.co.uk|2001:470:971f:99::6|:443... connected.

HTTP request sent, awaiting response... 200 OK

Length: 7323 (7.2K) [text/html]

Line 86: Line 85:

2012-01-28 14:37:21 (112 MB/s) - `ipv6.html' saved [7323/7323]

</pre>

−

===Testing the UDP ports, the default TCP ports list and 3 custom TCP ports===

Line 92: Line 90: −

'''wget --no-proxy --output-document=ipv6.html <nowiki>"https://~~www6~~.chappell-family.co.uk/cgi-bin6/ipscan-txt.cgi?includeexisting=1&customport0=8080&customport1=33452&customport2=65535&customport3=&termsaccepted=1"</nowiki>'''

+

'''wget --no-proxy --output-document=ipv6.html <nowiki>"https://www66.chappell-family.co.uk/cgi-bin6/ipscan-txt.cgi?includeexisting=1&customport0=8080&customport1=33452&customport2=65535&customport3=&termsaccepted=1"</nowiki>'''

<pre>

−

--2012-01-28 14:39:53-- https://~~www6~~.chappell-family.co.uk/cgi-bin6/ipscan-txt.cgi?includeexisting=1&customport0=8080&customport1=33452&customport2=65535&customport3=

+

--2012-01-28 14:39:53-- https://www66.chappell-family.co.uk/cgi-bin6/ipscan-txt.cgi?includeexisting=1&customport0=8080&customport1=33452&customport2=65535&customport3=&termsaccepted=1

−

Resolving ~~www6~~.chappell-family.co.uk... 2001:470:~~1f08~~:~~185c~~::2

+

Resolving www66.chappell-family.co.uk... 2001:470:971f:99::6

−

Connecting to ~~www6~~.chappell-family.co.uk|2001:470:~~1f08~~:~~185c~~::2|:80... connected.

+

Connecting to www66.chappell-family.co.uk|2001:470:971f:99::6|:443... connected.

HTTP request sent, awaiting response... 200 OK

Length: 10263 (10K) [text/html]

Line 105: Line 103:

2012-01-28 14:39:54 (222 MB/s) - `ipv6.html' saved [10263/10263]

+

</pre>

+

===Default test using curl===

+

'''$ curl -sS "https://www66.chappell-family.co.uk/cgi-bin6/ipscanfasttxt.cgi?includeexisting=1&customport0=&customport1=&customport2=&customport3=&termsaccepted=1"'''

+

or

+

'''$ curl -sS "https://www66.chappell-family.co.uk/cgi-bin6/ipscanfasttxt.cgi?includeexisting=1&customport0=&customport1=&customport2=&customport3=&termsaccepted=1" |awk -F'[<> ]' 'BEGIN{printf("\nPORT\tSTATE\n")};{for(i=4;i<=NF;i++){if (index($i,"OPEN")>0 && $(i-1)=="=" && $(i-3)=="Port") {printf("%s\t%s\n",$(i-2),$i)}}};' '''

+

<pre>

+

PORT STATE

+

80 OPEN

+

443 OPEN

+

1080 OPEN

+

3128 OPEN

</pre>

Line 111: Line 125:

On the router:

−

'''sudo /usr/bin/curl -G <nowiki>'https://~~www6~~.chappell-family.co.uk/cgi-bin6/ipscantxt.cgi'</nowiki> --data-urlencode 'includeexisting=1' --data-urlencode 'customport0=' --data-urlencode 'customport1=' --data-urlencode 'customport2=' --data-urlencode 'customport3=' --data-urlencode 'termsaccepted=1' -H 'Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8' -H 'Accept-Language: en-US,en;q=0.5' --compressed -H 'Connection: keep-alive' 2>&1 >/tmp/ipv6.html'''

+

'''sudo /usr/bin/curl -G <nowiki>'https://www66.chappell-family.co.uk/cgi-bin6/ipscantxt.cgi'</nowiki> --data-urlencode 'includeexisting=1' --data-urlencode 'customport0=' --data-urlencode 'customport1=' --data-urlencode 'customport2=' --data-urlencode 'customport3=' --data-urlencode 'termsaccepted=1' -H 'Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8' -H 'Accept-Language: en-US,en;q=0.5' --compressed -H 'Connection: keep-alive' 2>&1 >/tmp/ipv6.html'''

'''sudo scp /tmp/ipv6.html <user>@<host>:'''

Line 120: Line 134:

Exchange <user> and <host> for an applicable account and machine name to transfer the results file to.

−

<pre>sudo /usr/bin/curl -G <nowiki>'https://~~www6~~.chappell-family.co.uk/cgi-bin6/ipscantxt.cgi'</nowiki> --data-urlencode 'includeexisting=1' --data-urlencode 'customport0=' --data-urlencode 'customport1=' --data-urlencode 'customport2=' --data-urlencode 'customport3=' --data-urlencode 'termsaccepted=1' -H 'Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8' -H 'Accept-Language: en-US,en;q=0.5' --compressed -H 'Connection: keep-alive' 2>&1 >/tmp/ipv6.html

+

<pre>sudo /usr/bin/curl -G <nowiki>'https://www66.chappell-family.co.uk/cgi-bin6/ipscantxt.cgi'</nowiki> --data-urlencode 'includeexisting=1' --data-urlencode 'customport0=' --data-urlencode 'customport1=' --data-urlencode 'customport2=' --data-urlencode 'customport3=' --data-urlencode 'termsaccepted=1' -H 'Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8' -H 'Accept-Language: en-US,en;q=0.5' --compressed -H 'Connection: keep-alive' 2>&1 >/tmp/ipv6.html

% Total % Received % Xferd Average Speed Time Time Time Current

Dload Upload Total Spent Left Speed

100 2844 100 2844 0 0 30 0 0:01:34 0:01:33 0:00:01 627

</pre>

−

===HTML Results Scraping===

Wikiadmin

Bureaucrats, Administrators

579

edits

Changes

ScanAutomation (view source)

Revision as of 22:44, 20 December 2023

Navigation menu

Search