International Journal For Multidisciplinary Research

E-ISSN: 2582-2160     Impact Factor: 9.24

A Widely Indexed Open Access Peer Reviewed Multidisciplinary Bi-monthly Scholarly International Journal

Call for Paper Volume 8, Issue 3 (May-June 2026) Submit your research before last 3 days of June to publish your research paper in the issue of May-June.
Submit Research Paper Join as a Reviewer

Plagiarism is checked by the leading plagiarism checker TurnItIn

Call for Paper

Volume 8 Issue 3
May-June 2026

Submit your research paper

Indexing Partners
Academia Advanced Sciences Index Bielefeld Academic Search Engine CiteSeer DRJI Google Scholar Independent Search Engine & Directory Network ISI (International Scientific Indexing) Issuu Mendeley Research Networks
RefSeek ResearcherId - Thomson Reuters ResearchGate Scirus Scribd Semantic Scholar UTeM - Universiti Teknikal Malaysia Melaka Wiki for Call for Papers WorldCat Zenodo

Silent Takeover: Exploiting IPv6 DNS Behavior in Windows 11 Networks

Author(s) Mr. Divyansh Bodhale, Mr. Deepesh Gautam, Mr. Ankit Bisen, Mr. Aditya Wadive, Prof. Leelkant Dewagan, Swati Tiwari
Country India
Abstract This research presents a comprehensive analysis of IPv6 DNS takeover vulnerabilities in Windows 11 enter- prise networks, demonstrating a critical security gap in default network configurations. Through systematic experimentation in controlled laboratory environments, we identified and exploited a fundamental weakness in how Windows systems handle DHCPv6 solicitations and DNS resolution, particularly when combined with the Web Proxy Auto-Discovery (WPAD) protocol. Our study reveals that 95% of Windows systems with default configurations are vulnerable to credential harvesting attacks through IPv6 DNS manipulation, with successful NTLMv2 hash capture occurring within 2-3 minutes of attack initiation. We developed dual- purpose automated tools: an offensive penetration testing utility achieving 90% evasion rate against standard security tools, and a comprehensive PowerShell-based defense mechanism providing real-time attack detection and automated hardening. The re- search demonstrates that despite Windows 11’s enhanced security features, the default enablement of IPv6 combined with automatic WPAD discovery creates an exploitable attack surface requiring immediate attention. Our findings indicate that organizations can achieve complete mitigation through strategic IPv6 configuration management, WPAD disablement, and implementation of our proposed monitoring framework. This work contributes both practical security tools and actionable recommendations for securing modern Windows networks against emerging IPv6- based threats.
Field Computer > Network / Security
Published In Volume 7, Issue 6, November-December 2025
Published On 2025-11-19
DOI https://doi.org/10.36948/ijfmr.2025.v07i06.58968
View / Download PDF File

Share this



E-ISSN 2582-2160
CrossRef

CrossRef DOI is assigned to each research paper published in our journal.

IJFMR DOI prefix is
10.36948/ijfmr

Downloads
Research Paper Format Copyright Permission Form and Undertaking Form Cover Page Vol 8 Isu 3Cover Page Vol 8 Isu 2Cover Page Vol 8 Isu 2

All research papers published on this website are licensed under Creative Commons Attribution-ShareAlike 4.0 International License, and all rights belong to their respective authors/researchers.

CC-BY-SA Open Access

About IJFMR
Fees & Payment
Current Issue
Publication Archive 		Submit Research Paper
Track Submission Status
Publication Guidelines
Publication Ethics
Peer Review & Plagiarism 		Join as a Reviewer
Editors & Reviewers
Reviewer Referral Program
Get Reviewer Membership Certi. 		Website/Journal Policies
Usage Policy
Content Policies
Privacy Policy
Contact Us +91-9687-828-838 editor@ijfmr.com
Powered by Sky Research Publication and Journals