It’s been over a year since sdnpwn was first released, and in that time there have been a lot of updates. In this post I’m going to give a quick overview of the newest latest to be added!
This article looks at a few ways an SDN controller can be identified and how to use the sdnpwn controller-detect module.
This article discusses XSS vulnerabilities found in the Floodlight and ONOS controllers. Exploits and mitigation strategies are provided.
The Data Plane ARP Cache Poisoning attack explained.
A description of CVE-2017-1000357 and how to exploit it using sdnpwn.
An article and tutorial on getting started with the sdnpwn penetration testing toolkit.
Learn how to create an SDN testbed using Mininet and the Floodlight controller