Collaborate Disseminate
I’ve came across an interesting question today – how can a JavaScript detect that a DNS Spoofing attack has been made against the client its running upon?
Scenario:
Edit: wrong scenario was presented. Please refer @Polynom… Continue reading DNS Spoofing Detection with JavaScript
I understand that self signed ssl is risky incase of dns spoofing since the attacker may generate a self signed ssl himself and place it in his ip address and it will trigger a warning in the client browser.But what makes the EV SSL differ… Continue reading Does EV SSL certificate makes any difference while used instead of self signed ssl in case of API for android app?
Consider a scenario: (at victims end) in DNS cache poisoning attack. When the victim will go to a website (eg: gmail.com), he will be taken to some other phishy website. Now here the URL remains the same, so is there any way … Continue reading What are the ways to identify a DNS cache poisoning attack?
It’s become common knowledge that running an open resolver is a security risk, because your open resolver will be abused with amplification attacks.
For amplification attacks to succeed, the attacker has to use IP spoofing. … Continue reading What are the risks of running an open resolver using DoT/DoH only?
If I am not wrong DNS cache poisoning attacks are done by corrupting DNS cache on a local machine. What if we can monitor DNS cache and update it regularly.
i.e I want to write a python script that can monitor my computers DN… Continue reading monitoring dns cache to prevent dns spoofing
Using Subdomain Resolution for DNS Cache Poisoning
By itself, this
attack accomplishes littleāon a successful attempt, the at- tacker
only manages to poison the DNS record for a nonexistent domain. This
is where th… Continue reading Glue record in DNS [on hold]
Another challenge in the resolution of domain names is the possi-
bility of infinite loops. Suppose in the example above, the .com name
server replied indicating that the authoritative name server for the
ex- ample.c… Continue reading How is infinite loop created in DNS query? [on hold]
I want to make an evil DNS server that injects JavaScript code on any requested website even HTTPS. it could be used over WAN via changing the DNS setting on routers.
Suggestions for best tool for that and prefer to be open … Continue reading How to make an evil DNS server? [on hold]
Is there a way to redirect all requests to a single website?
I’m using MITMF to do the DNS spoofing and here is what I have:
[[[A]]] # Queries for IPv4 address records
*.(website request)=(ip to redirect)
But, I only … Continue reading DNS spoofing using MITMF
Excerpt from https://letsencrypt.org/docs/certificates-for-localhost/
You might be tempted to work around these limitations by setting up a domain name in the global DNS that happens to resolve to 127.0.0.1 (for instance,… Continue reading Certificates for localhost, MITM Attack