IPv6 capable Security Scanner

["David W. Goodrum" <dgoodrum () nfr com>]

Hi list,

I'm looking for a scanning tool that is capable of scanning IPv6 
addresses for vulnerabilities.  I briefly googled "IPv6 Security 
Scanner" and also checked out nessus.org to see if they had any 
documentation as to whether they supported vulnerability scanning for 
IPv6 devices, but didn't find anything other than a few IPv6 port 
scanners.  I don't want tools that are just port scanners.  I know nmap 
now supports IPv6, but I'm looking for something a little deeper than 
port scanning.

I probably need a tool that can be triggered from command line also.

Preferably the tool would run on Linux or Solaris... I could probably 
make windows work if I had to, but I'd rather not.

I'm implementing NFR at a client where we'll use the product to 
passively detect new IPv6 rogues as soon as they come on the network and 
then automatically trigger an active vulnerability scan.  I will 
probably use nmap with it's "advanced version detection system", for 
proof-of-concept, but I'd like to know if there are other options available.

Any help is appreciated.

thanks,

dave
--
David Goodrum, CEH
(nfr)(security)
http://www.nfr.com
(M)703.731.3765
(O)240.747.3425
(F)240.632.0200

------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it 
with real-world attacks from CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 
to learn more.
------------------------------------------------------------------------