31.1.17

DNS Poisoning: "Judas"

A DNS proxy server built to be deployed in place of a taken over nameserver to perform targeted exploitation. Judas works by proxying all DNS queries to the legitimate nameservers for a domain. The magic comes with Judas’s rule configurations which allow you to change DNS responses depending on source IP or DNS query type. This allows an attacker to configure a malicious nameserver to do things like selectively re-route inbound email coming from specified source IP ranges (via modified MX records), set extremely long TTLs to keep poisoned records cached, and more.

https://n0where.net/dns-poisoning-attacks-made-easy-judas-dns/

1 comment :

Anonymous said...

ΤΙ ΣΥΜΠΤΩΣΗ,ΣΗΜΕΡΑ ΕΙΧΑ ΜΙΑ ΣΥΖΗΤΗΣΗ - ΜΕΛΕΤΗ ΓΙ'ΑΥΤΟ ΤΟ ΘΕΜΑ.

-ΔΗΜΗΤΡΑ-