Articles

Metasploit Framework Windows Tutorial
Remote Desktop Connection
Windows Processes That May Be Dangerous
How-To use NetCat a Tutorial
Common Linux Commands
Common Ports
Netcat Commands
HTTP Response Codes
War-Google Hack Terms
Wardriving
Avoiding Social Engineering and Phishing Attacks
Intrusion Detection on Linux
Linux Intrusion Detection
Penetration Testing Guide
Penetration Testing Tools
Social Engineering Fundamentals, Part I: Hacker Tactics
Social engineering (computer security)
The Psychology of Social Engineering

The Archives

General GSO
GovernmentSecurity.org News & Suggestions
In The News
Open Topic
General Security Information
Trash Can
Exploit & Vulnerability Mailing List Archives
Trial Member Forum
Product and Program Reviews GSO Tutorials
System Security
Windows Systems
Beginners Section
Linux & Unix Systems
File Downloads
Exploit Research & Discussion Trojan & Virus Errata
Networking Security / Firewall / IDS / VPN / Routers
System Hardening
E-Mail Security
Wifi Security
Trial Member Uploads
Upload discovered Trojans & Mal ware
GSO Programming Section
C , C++ , VC++
Visual Basic.NET
Perl /CGI
Java/Javascript
PHP/XML/ASP/HTML
Assembly + Other
The Cork Board
Network Security Consultant Directory
Network Security Jobs
The Archives
Encryption Information
General Network Security
Internet Anonymity
HTTP Protocol Security
Linux Security
MS IIS Information
Exploit Articles
Programming / Tool Design
GSO Software Projects
Public Downloads
Microsoft Security Questions and Papers
Help - Search - Member List - Calendar
GovernmentSecurity.org > System Security > System Hardening
RELiC
May 1 2004, 06:44 AM
QUOTE
Research Paper - DNS Cache Snooping
Luis Grangeia (luis.grangeia at sidestep.pt)
February 2004 ( last revised April 2004)

Abstract

This research paper presents a technical overview of the technique known as DNS cache snooping. Firstly,
a brief introduction to DNS is made followed by a discussion on common misconceptions regarding DNS
sub-systems. Then this relatively unknown technique is introduced, followed by a field study to assert the
overall exposure of the Internet to this threat. Also, a set of devised abuse scenarios that rely on cache
snooping is presented. This paper concludes with recommendations on how to reduce exposure to this
problem, including proposed changes to the BIND DNS server implementation

DNS Cache Snooping (PDF)
CODE
http://community.sidestep.pt/~luis/DNS-Cache-Snooping/DNS_Cache_Snooping_1.1.pdf
Related Files
CODE
http://community.sidestep.pt/~luis/DNS-Cache-Snooping/files/
../
../
ind0r
May 3 2004, 10:57 AM
thx, I'm just reading :-)
Dinos
May 18 2004, 02:04 PM
Very interesting smile.gif Thanks for sharing the information.

I tried a bit in past times, but without success by then.

manu
May 19 2004, 07:43 AM
Good notes dude, Thanks a lot.

Manu biggrin.gif
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
Invision Power Board © 2001-2005 Invision Power Services, Inc.