IPv6 Security — Rogue RAs & mitm6

Every modern machine on your network runs IPv6 right now, has it enabled by default, and prefers it over IPv4 — even on networks the admins think are "IPv4 only". Almost nobody monitors or filters it. That gap is a second, invisible network an attacker can own with a single forged packet. This is how IPv6 autoconfiguration works, how a rogue Router Advertisement makes you the gateway, and how mitm6 turns that into Active Directory domain compromise.

Related Articles