ipv666 - Golang实现的IPV6地址扫描.zip

# ipv666 **NOTE** - This software was previously licensed under GPLv3 and has since been updated to BSD. `ipv666` is a set of tools that enables the discovery of IPv6 addresses both in the global IPv6 address space and in more narrow IPv6 network ranges. These tools are designed to work out of the box with minimal knowledge of their workings. As of `v0.4` we have provided functionality into the tool set wherein you can choose to share any addresses you discover with us. All results uploaded by all parties can be queried [on our website](https://ipv6.exposed). The web site is bare bones right now but we have lots of plans for improvements! The tools included in this codebase are as follows: * [`scan discover`](#scan-discover) - Locates live hosts over IPv6 using statistical modeling and ICMP ping scans * [`scan alias`](#scan-alias) - Tests a single IPv6 network range to see if the network range is aliased * [`generate addresses`](#generate-addresses) - Generate IPv6 addresses based on the content of a probabilistic clustering model * [`generate model`](#generate-model) - Generate a probabilistic clustering model based off an input set of IPv6 addresses * [`generate blacklist`](#generate-blacklist) - Adds the contents of a file containing IPv6 network ranges to the aliased network blacklist * [`clean`](#clean) - Cleans the contents of a file containing IPv6 addresses based on an aliased network blacklist * [`convert`](#convert) - Converts the contents of a file containing IPv6 addresses to another IP address representation Unless you're doing more complicated IPv6 research it is likely that the [`scan discover`](#scan-discover) tool is what you're looking for. To get started check out the [Installation](#installation) section first and then head to whichever section details the tool you're looking to use. This software is brought to you free of charge by [@_lavalamp](https://twitter.com/_lavalamp) and [@marcnewlin](https://twitter.com/marcnewlin), and we hope that you find it useful. If you do find it useful and you'd like to support our continued contributions to the codebase, please consider donating via any of the following: * **PayPal** - [paypal.me/thelavalamp](https://www.paypal.me/thelavalamp) * **BTC** - 371FzLrE7dzd3cZNjDytSyV5hDhDpLj1Mr * **ETH** - 0x2A35C6987a7E2515EEdB8fB43a7FA86a9Ea917f4 * **LTC** - MGkiBazpfs17ek7DuVJKwzwcFjVcmwrXur ## Installation As of `v0.2` `ipv666` should be much easier to install! First you'll need to have the [Golang environment installed](https://golang.org/doc/install#install). As `ipv666` makes use of Go modules we recommend using Golang `v1.11` and above to ensure a working installation. Once you have Golang `v1.11` or above installed, do the following: ```$xslt go get github.com/lavalamp-/ipv666/ipv666 ``` Once this command completes you should have the `ipv666` binary on your path. If you don't, double check to make sure that `$GOPATH/bin` is in your `PATH`. **NOTE** - This software is only intended to be run on Linux-based operating systems. Support for other operating systems is not presently planned. **NOTE** - As of `v0.4` we have built in the ability for users of `ipv666` to upload the addresses they discover to our central service. You will be prompted on first use as to whether or not you would like to provide data to us. The addresses that are uploaded in this manner are made queryable on [our IPv666 web site](https://ipv6.exposed/). If you choose not to upload your discovered addresses, no worries! We will ask for your approval again once every seven days, just in case you change your mind. ## scan discover The `scan discover` tool is the main workhorse of this toolset. It uses some fairly complicated statistical modeling, analysis, and blacklisting to predict legitimate IPv6 addresses and scan for their presence. More details on how exactly this tool works can be found [in this blog post](https://l.avala.mp/?p=285). Please note that any networks that you scan with this tool will receive a considerable amount of traffic for a significant variety of IPv6 addresses. In some cases the networking infrastructure that is carrying your traffic will be unhappy and may either fall over and/or block you. We recommend exercising caution when using this tool (especially for targeted network scans) and choosing a `bandwidth` value with care (default is currently 20 Mbps). ### Usage ```$xslt This utility scans for live hosts over IPv6 based on the network range you specify. If no range is specified, then this utility scans the global IPv6 address space (e.g. 2000::/4). The scanning process generates candidate addresses, scans for them, tests the network ranges where live addresses are found for aliased conditions, and adds legitimate discovered IPv6 addresses to an output list. Usage: ipv666 scan discover [flags] Flags: -h, --help help for discover -o, --output string The path to the file where discovered addresses should be written. -t, --output-type string The type of output to write to the output file (txt or bin). Global Flags: -b, --bandwidth string The maximum bandwidth to use for ping scanning -f, --force Whether or not to force accept all prompts (useful for daemonized scanning). -l, --log string The log level to emit logs at (one of debug, info, success, warn, error). -n, --network string The IPv6 CIDR range to scan. ``` ### Examples Scan the global address space for live hosts over IPv6 with a maximum speed of 20 Mbps and write the results to a file entitled `discovered_addrs.txt`: ```$xslt ipv666 scan discover ``` Scan the network `2600:6000::/32` for live hosts over IPv6 with a maximum speed of 10 Mbps and write the results to a file entitled `addresses.txt`: ```$xslt ipv666 scan discover -b 10M -o addresses.txt -n 2600:6000::/32 ``` ## scan alias The `scan alias` tool will test a target network to see if it exhibits traits of being an aliased network (ie: all addresses in the range respond to ICMP pings). If the target network is aliased it will perform a binary search to find the exact network length for how large the aliased network is. ### Usage ```$xslt A utility for testing whether or not a network range exhibits traits of an aliased network range. Aliased network ranges are ranges in which every host responds to a ping request, thereby making it look like the range is full of IPv6 hosts. Pointing this utility at a network range will let tell you whether or not that network range is aliased and, if it is, the boundary of the network range that is aliased. Usage: ipv666 scan alias [flags] Flags: -h, --help help for alias Global Flags: -b, --bandwidth string The maximum bandwidth to use for ping scanning -f, --force Whether or not to force accept all prompts (useful for daemonized scanning). -l, --log string The log level to emit logs at (one of debug, info, success, warn, error). -n, --network string The IPv6 CIDR range to scan. ``` ### Examples Test the network range `2600:9000:2173:6d50:5dca:2d48::/96` to see if it's aliased with a maximum speed of 20 Mbps: ```$xslt ipv666 scan alias -n 2600:9000:2173:6d50:5dca:2d48::/96 ``` Test the network range `2600:9000:2173:6d50:5dca:2d48::/96` to see ifit's aliased with maximum speed of 10 Mbps and show debug logging: ```$xslt ipv666 scan alias -n 2600:9000:2173:6d50:5dca:2d48::/96 -b 10M -l debug ``` ## generate addresses The `generate addresses` tool uses a predictive clustering model to generate a set number of IPv6 addresses. The addresses are subsequently written to a specified file. ### Usage ```$xslt This utility will generate IPv6 addresses in target network range (or in the global address space) based on the default included cluster model or a cluster model that you specify. Usage: ipv666 generate addresses [flags] Flags: -c, --count int The number of IP addresses to genera