<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Mitm6 on Notes by Nisha</title><link>https://notesbynisha.com/tags/mitm6/</link><description>Recent content in Mitm6 on Notes by Nisha</description><generator>Hugo</generator><language>en</language><copyright>&amp;copy; 2026 Nisha</copyright><lastBuildDate>Mon, 22 Jul 2024 00:00:00 +0000</lastBuildDate><atom:link href="https://notesbynisha.com/tags/mitm6/index.xml" rel="self" type="application/rss+xml"/><item><title>IPv6 DNS Takeover with MITM6 in an Active Directory Environment</title><link>https://notesbynisha.com/posts/2024-07-26-ad-attack-ipv6-dns-takeover-via-mitm6/</link><pubDate>Mon, 22 Jul 2024 00:00:00 +0000</pubDate><guid>https://notesbynisha.com/posts/2024-07-26-ad-attack-ipv6-dns-takeover-via-mitm6/</guid><description>&lt;h2 id="table-of-contents" class="relative group">Table of Contents &lt;span class="absolute top-0 w-6 transition-opacity opacity-0 -start-6 not-prose group-hover:opacity-100">&lt;a class="group-hover:text-primary-300 dark:group-hover:text-neutral-700" style="text-decoration-line: none !important;" href="#table-of-contents" aria-label="Anchor">#&lt;/a>&lt;/span>&lt;/h2>&lt;ol>
&lt;li>&lt;a href="#introduction">Introduction&lt;/a>&lt;/li>
&lt;li>&lt;a href="#understanding-ipv6-dns-takeover">Understanding IPv6 DNS Takeover&lt;/a>&lt;/li>
&lt;li>&lt;a href="#mitigation-strategies">Mitigation Strategies&lt;/a>&lt;/li>
&lt;li>&lt;a href="#demonstration-steps">Demonstration Steps&lt;/a>
&lt;ul>
&lt;li>&lt;a href="#step-1-setup-ntlm-relay-using-ldaps">Step 1: Setup NTLM Relay using LDAPS&lt;/a>&lt;/li>
&lt;li>&lt;a href="#step-2-run-mitm6">Step 2: Run MITM6&lt;/a>&lt;/li>
&lt;li>&lt;a href="#simulate-event-and-capture-data">Simulate Event and Capture Data&lt;/a>&lt;/li>
&lt;li>&lt;a href="#simulate-login-and-gain-access">Simulate Login and Gain Access&lt;/a>&lt;/li>
&lt;/ul>
&lt;/li>
&lt;li>&lt;a href="#conclusion">Conclusion&lt;/a>&lt;/li>
&lt;/ol>
&lt;h2 id="introduction" class="relative group">Introduction &lt;span class="absolute top-0 w-6 transition-opacity opacity-0 -start-6 not-prose group-hover:opacity-100">&lt;a class="group-hover:text-primary-300 dark:group-hover:text-neutral-700" style="text-decoration-line: none !important;" href="#introduction" aria-label="Anchor">#&lt;/a>&lt;/span>&lt;/h2>&lt;p>In this blog post, I will walk you through a demonstration of an IPv6 DNS takeover attack using the mitm6 (Man in the Middle for IPv6) tool in an Active Directory (AD) pentesting environment. This type of attack exploits weaknesses in the network&amp;rsquo;s handling of IPv6, allowing an attacker to become a Man-in-the-Middle (MITM) and relay NTLM authentication requests to a Domain Controller (DC).&lt;/p></description></item></channel></rss>