Přístupnostní navigace
E-application
Search Search Close
Master's Thesis
Author of thesis: Ing. Tomáš Tesař
Acad. year: 2025/2026
Supervisor: doc. Ing. Jan Jeřábek, Ph.D.
Reviewer: Ing. Ondřej Dohnal
This~thesis extends and~verifies the~functionality of~the~tool ptnetinspector, designed for~host discovery and~penetration testing in~networks utilizing primarily the~IPv6 protocol. The~theoretical part describes the~IPv6 protocol architecture, ICMPv6, NDP, MLD, and~extension headers, with~focus on~features relevant to~automated host discovery. A~virtual testing environment based on~GNS3 with~multiple operating systems was created, and~the~original and~extended tool versions were systematically compared. Several bugs were identified and~fixed, including incorrect IPv6 extension header option types, source port handling for~mDNS, LLMNR, and~DNS-SD, and~a~race condition in~concurrent packet sending. The~extended version newly implements full IGMP and~MLD multicast group management, enabling reliable operation in~switched networks with~multicast control. IPv6 extension header probes were expanded with~new empty-payload test cases capable of~detecting hosts that block ICMPv6 Echo Request and~Echo Reply. Further improvements include parallelization of~several tests, in-memory deduplication, reduced scan timeouts, and~finer-grained vulnerability reporting at~the~IP address level. The~new version significantly reduces scan runtime across all tested scenarios while detecting additional vulnerability types.
IPv6, network analysis, host discovery, ICMPv6, Neighbor Discovery Protocol, Multicast Listener Discovery, IPv6 extension headers, ptnetinspector, network scanning, IPv6 security
Date of defence
09.06.2026
Result of the defence
Defended (thesis was successfully defended)
Grading
A
Process of defence
Student prezentoval výsledky své práce a komise byla seznámena s posudky. Otázky: Jak byste metodicky porovnal ptnetinspector s nástroji jako Nmap nebo THC-IPv6? Jakým způsobem jste ověřil, že nově implementované testy nezvyšují počet falešně pozitivních výsledků? Jaká bezpečnostní a provozní rizika jsou spojena s použitím agresivního režimu nástroje v produkční síti? Student obhájil diplomovou práci a odpověděl na otázky členů komise a oponenta.
Language of thesis
Czech
Faculty
Fakulta elektrotechniky a komunikačních technologií
Department
Department of Telecommunications
Study programme
Information Security (MPC-IBE)
Composition of Committee
Ing. Ondřej Krajsa, Ph.D. (člen) Ing. Jan Skapa, Ph.D. (člen) Ing. Róberta Hlavatá, Ph.D. (člen) JUDr. Mgr. Jakub Harašta, Ph.D. (člen) doc. Ing. Rastislav Róka, PhD. (předseda) doc. Ing. Jan Jeřábek, Ph.D. (místopředseda) Ing. Ondřej Klíčník (člen) Ing. Vojtěch Kovanda (člen)
Supervisor’s reportdoc. Ing. Jan Jeřábek, Ph.D.
Grade proposed by supervisor: A
Reviewer’s reportIng. Ondřej Dohnal
Grade proposed by reviewer: A
Responsibility: Mgr. et Mgr. Hana Odstrčilová