The FNET is a free, open source, dual TCP/IPv4 and IPv6 Stack (under Apache Version 2.0 license) for building embedded communication software on 32bit MCUs.

Stars: ✭ 97 (-52.68%)

Mutual labels: tcpip

treebitmap

Fast IP lookup table for IPv4/IPv6 prefixes

Stars: ✭ 81 (-60.49%)

Mutual labels: ipv6

php-ip-anonymizer

IP address anonymizer library for PHP

Stars: ✭ 55 (-73.17%)

Mutual labels: ipv6

PHP-IPAddress

IP Address utility classes for PHP

Stars: ✭ 63 (-69.27%)

Mutual labels: ipv6

hphr

Halophile Router (a VyOS-based, SaltStack-automated, NetBox-configured router for small provider networks)

Stars: ✭ 39 (-80.98%)

Mutual labels: ipv6

masscanned

Let's be scanned. A low-interaction honeypot focused on network scanners and bots. It integrates very well with IVRE to build a self-hosted alternative to GreyNoise.

Stars: ✭ 50 (-75.61%)

Mutual labels: ipv6

ipapi-python

Python bindings for https://ipapi.co (IP Address Location) - Use with python / django / flask for IP address location lookup

Stars: ✭ 42 (-79.51%)

Mutual labels: ipv6

meshname

Meshname, a universal naming system for all IPv6-based mesh networks, including CJDNS and Yggdrasil

Stars: ✭ 65 (-68.29%)

Mutual labels: ipv6

IP2Location-C-Library

IP2Location C library enables the user to find the country, region, city, coordinates, zip code, time zone, ISP, domain name, connection type, area code, weather station code, weather station name, mobile, usage types, etc that any IP address or hostname originates from.

Stars: ✭ 37 (-81.95%)

Mutual labels: ipv6

bacnet-stack

BACnet Protocol Stack library provides a BACnet application layer, network layer and media access (MAC) layer communications services.

Stars: ✭ 199 (-2.93%)

Mutual labels: ipv6

GS-IPv6-Forwarder

Enables access to GameStream servers over IPv6 (included in Internet Hosting Tool)

Stars: ✭ 35 (-82.93%)

Mutual labels: ipv6

net-protocol

golang模拟内核协议栈实现链路层、网络层、传输层、应用层用户态协议栈 ,基于虚拟网卡TUN/TAP

Stars: ✭ 129 (-37.07%)

Mutual labels: ipv6

View All Similar Projects ➔

CVE-2021-24086

This is a proof of concept for CVE-2021-24086 ("Windows TCP/IP Denial of Service Vulnerability "), a NULL dereference in tcpip.sys patched by Microsoft in February 2021. According to this tweet, the vulnerability has been found by @piazzt. It is triggerable remotely by sending malicious UDP packet over IPv6.

You can read Microsoft's blog here: Multiple Security Updates Affecting TCP/IP:  CVE-2021-24074, CVE-2021-24094, and CVE-2021-24086. It discusses briefly the impact and workaround/mitigations.

A more in-depth discussion about the root-cause is available on doar-e.github.io: Reverse-engineering tcpip.sys: mechanics of a packet of the death (CVE-2021-24086).

Running the PoC

Run the cve-2021-24086.py script; it requires Scapy:

over@bubuntu:~$ sudo python3 cve-2021-24086.py
66 fragments, total size 0xfff8
..................................................................
Sent 66 packets.
.
Sent 1 packets.

Authors

Axel '@0vercl0k' Souchet

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

0vercl0k / CVE-2021-24086

Programming Languages

Labels

Projects that are alternatives of or similar to CVE-2021-24086

CVE-2021-24086

Running the PoC

Authors