Chiron

LSE toolsLSE toolsChiron (373)Chiron (373)

Tool and Usage

Project details

License
GPLv3
Programming language
Python
Author
Antonios Atlasis
Latest release
1.0
Latest release date

Project health

60
This score is calculated by different factors, like project age, last release date, etc.

Why this tool?

Chiron is a security assessment framework for IPv6. It provides several modules including an IPv6 scanner, IPv6 Local Link, IPv4-to-IPv6 proxy, IPv6 attack module, and IPv6 proxy. These modules help to perform an assessment, like a penetration test.

The tool uses IPv6 extension headers to create a headers chain. This may allow evading security devices like IDS, IPS, and firewalls. Due to the flexibility of the framework, the tool can also be used to perform fuzzing of the IPv6 stack of a device.

How it works

Chiron is written in Python and using Scapy to create its traffic. The sniffer in Chiron does not use the OS stack, but its own implementation.

Usage and audience

Chiron is commonly used for network analysis, network scanning, or network security monitoring. Target users for this tool are network administrators and pentesters.

Features

  • Command line interface

Example usage and output

usage: chiron_scanner.py [-h] [-v] [-gw GATEWAY] [-s SOURCE] [-rs]
[-m MAC_SOURCE] [-tm TARGET_MAC] [-rm]
[-iL INPUT_FILE] [-d DESTINATION] [-sM] [-pr PREFIX]
[-iC INPUT_COMBINATIONS] [-of OUTPUT_FILE] [-dns DNS]
[-dns-server DNS_SERVER] [-nsol] [-pmtu] [-mtu DMTU]
[-rec] [-mpn] [-sn] [-type ICMPV6_TYPE]
[-code ICMPV6_CODE] [-sS] [-sA] [-sX] [-sR] [-sF]
[-sN] [-sU] [-tr-gr] [-tr] [-max_ttl MAXTTL]
[-min_ttl MINTTL] [-lfE LEF] [-luE LEU]
[-hoplimit HOPLIMIT] [-nf NUMBER_OF_FRAGMENTS]
[-lnh LIST_OF_NEXT_HEADERS] [-lo LIST_OF_OFFSETS]
[-ll LIST_OF_FRAGMENT_LENGTHS]
[-lm LIST_OF_FRAGMENT_M_BITS] [-id FRAGMENT_ID]
[-seh SIZE_OF_EXTHEADERS] [-l4 LAYER4]
[-l4_data L4_DATA] [-p DESTPORT]
[-stimeout SNIFFER_TIMEOUT] [-threads NO_OF_THREADS]
[-delay DELAY] [-rh0] [-fl] [-fuzz]
[-flooding-interval FLOODING_INTERVAL]
[-ftimeout FLOODING_TIMEOUT]
interface

Tool review and remarks

The review and analysis of this project resulted in the following remarks for this security tool:

Strengths

  • + The source code of this software is available

Weaknesses

  • - No releases on GitHub available

History and highlights

  • Demo at Black Hat USA 2018 Arsenal

Author and Maintainers

Chiron is under development by Antonios Atlasis.

Installation

Supported operating systems

Chiron is known to work on Linux.

Dependencies

Several dependencies are required to use Chiron.

  • netaddr
  • scapy

Chiron alternatives

Similar tools to Chiron:

85

pysap

Pysap is a Python library to craft SAP network protocol packets. It can be used for analysis and security assessments.

64

WarBerryPi

WarBerryPi is a toolkit to provide a hardware implant during penetration testing or red teaming. Read how it works in this review.

56

0trace.py

The 0trace.py utility is a rewrite of 0trace (by another author) to perform reconnaissance and bypass network firewalls.

All Chiron alternatives

This tool page was updated at . Found an improvement? Help the community by submitting an update.

Related tool information

Definitions

IPv6 extension header
IPv6 extension headers allow providing optional Internet Layer information. These headers are placed between a fixed header and the upper-layer protocol header. By using a Next Header field, a headers chain can be created. It is a flexible method to customize IPv6 packets.