It’s been over a year since sdnpwn was first released, and in that time there have been a lot of updates. In this post I’m going to give a quick overview of the newest latest to be added!
This article looks at a few ways an SDN controller can be identified and how to use the sdnpwn controller-detect module.
This article discusses XSS vulnerabilities found in the Floodlight and ONOS controllers. Exploits and mitigation strategies are provided.
The Data Plane ARP Cache Poisoning attack explained.
A description of CVE-2017-1000357 and how to exploit it using sdnpwn.
An article and tutorial on getting started with the sdnpwn penetration testing toolkit.