Collaborate Disseminate
The Long-Term Evolution (LTE) mobile communications standard, also known as 4G, has much better security than its predecessor, the GSM, but is far from perfect. A team of researchers has demonstrated new techniques that allow hackers to launch both pa… Continue reading LTE Mobile Standard Weakness Allows DNS Spoofing, Website Fingerprinting
My coworker searched for “cutadapt” at Google Scholar and the top hit was http://journal.embnet.org/index.php/embnetjournal/article/view/200. When he clicked on it, it took him to a site that said something about having a vu… Continue reading To whom do I report this bizarre behavior (possibly hijacked website or DNS highjack)?
The purpose of DNSSEC is to prevent some attacks like cache poisoning so a client can be sure that the answer it gets from a recursive DNS server are correct (the IP is the correct IP). The root DNS holds a key pair that signs the keys of … Continue reading DNSSEC – does the domain owner owns a key?
I understand that dns2proxy works with sslstrip2 such that when a browser tries to connect to www.google.com, then sslstrip2 appends an extra ‘w’, so the browser instead connects to wwww.google.com. This is prevents HSTS in e… Continue reading How does dns2proxy exactly work?
I want to dns spoof my own phone, because I feel like it would be a cool experiment to do. It’s not working (damn phone keeps connecting to the internet), and I would really appreciate any suggestions or ideas in how to make it work. I can… Continue reading dnsspoof and bettercap not dns-spoofing
Most of the articles on the internet are focused on spoofing DNS requests using dnsmasq for an internal network.
Is there a way to setup a VPS with dnsmasq running so that I can use it externally?
For example I set my com… Continue reading Use dnsmasq as a DNS server for external requests
Clouldflare launches DNS-over-HTTPS service called 1.1.1.1 that it says will be a “privacy-first” DNS service for consumers. Continue reading Cloudflare Launches Publicly DNS-Over-HTTPS Service
Mozilla is testing a method of securing DNS traffic via HTTPS, but is faced with some privacy resistance. Continue reading Mozilla Tests DNS over HTTPS: Meets Some Privacy Pushback
I have a problem with dns spoof. I have seen tons of videos and articles about it but nothing seems to work.
Here are screens from arpspoof, dnsspoof and DNS packets on wireshark. Everything from attacker’s machine. On vic… Continue reading dnsspoof (dsniff) not working
I work for a large Eastern European bank as a programmer.
Recently, I was setting up a documentation website for my team. We came up with the host name, and now all we needed was to pick the best suitable zone for it and send a request to… Continue reading Active Directory DNS server security misconfiguration or an acceptable practice?