Collaborate Disseminate
When a Windows computer wants to resolve a domain name, it offloads the request to a DNS resolver and tells the resolver that it wants to resolve with DNSSEC (by setting the ‘DO’ bit in the query). The DNS resolver will use DNSSEC and will… Continue reading DNSSEC Client Validation – The Last Mile in DNSSEC
A benefit to password managers, at least some of them, is that they can look at the URL and only use autotype/autofill when on the correct site, which can help prevent pharming since if instead of https://www.example.com/ you go to examp1e… Continue reading DNS hijacking/poisoning effect on URL/URI and password manager autotype/autofill
I would like to be able to switch back and forth between the real DNS and maybe setting a local DNS entry so I can manipulate AJAX responses for code security checks.
For instance if the server responds with Ajax on page 1 that page 2 is n… Continue reading How can I manipulate certain server side responses? Specifically Ajax Responses? XXE Attack? Hybrid DNS Resolution?
I can regularly observe TLS 1.3 secured website duplications. The attacker indicates its presence by slight modifications on the web page. In particular I obseved this on the two following web pages:
https://en.wikipedia.org/wiki/Henry_Kis… Continue reading Can you guys help me on my decentralized and non-pyramidal DNS PKI secured with Wireguard and gnupg open source project?
First, I can update this with the affected domain, if it’s critical, but for obvious reasons I’d like not to be the target of more problems.
Someone registered some CAA records for my domain.
I have full control of all related accounts: Re… Continue reading Someone issued fake CAA records for my domain. What is the most important thing to do to resolve it?
Currently my domain is sitting without DNSSEC security because my domain provider didnt support it for my ccTLD domain, the feature will only be available once i renew my domain in about 2 months time.
As you can maybe guess, i am a vitcim… Continue reading How to stop/reduce constant DNS Spoof/Poisoning Attack from NGINX server if DNSSEC is not offered from provider?
DNS spoofing/poisoning is the attack discovered by [Dan Kaminski] back in 2008 that simply refuses to go away. This week a vulnerability was announced in the uClibc and uClibc-ng standard …read more Continue reading This Week in Security: uClibc and DNS Poisoning, Encryption is Hard, and the Goat
Could someone DNS spoof REST API communication between a client device POST to a server URL running a XML-based API on HTTPS?
If a man-in-the-middle for client device(s) POSTing to the server on a scheduled frequency where all REST API com… Continue reading DNS spoofing an API? [duplicate]
We have a fair amount of email traffic. Recently, we had some suspicious email spoofing attacks and a lot of users reported that outgoing emails were marked as spam and landed in junk folder (reported by mail recipients). When we checked o… Continue reading Suspicious ip address of our mail domain found on talosintelligence.com (spoofing attempt)
Prior to 2008 before Dan Kaminsky finds the DNS issue, the resolver checked only the
Transaction ID. I have seen videos in which it is explained if an attacker manages to send
a DNS response like (example.com: type A, class IN, address 192… Continue reading How does the attacker guess the domain name in a DNS query for DNS cache poisoning