Home » , » Dns Hacking

Dns Hacking



Hello my friends today i'm going to explain DNS Hacking briefly

To start, you gonna need :

• Install a local Server for example : APACHE
• You must understand how the Domain Name System (DNS) works with the Servers !


First thing let me introduce to you some informations ^_^

You have to know that most DNS servers operate using UDP or TCP over IP so they are vulnerable to IP (and ARP) hijacking.
So if the hacker can intercept the IP (or ARP) packets, then the attacker can impersonate the DNS server.

The DNS provides an order to computers to translate the domain names to the physical IPs they represent. For example you visit a page,
your browser will ask its DNS server for the IP of the host you requested, and the server will respond.
Your browser will then request the page from the server with the IP address that the DNS server supplied.
If we can find a way to tell the client the fake IP address, and give them the IP of our malicious server instead, we can have fun ^_^.

Any owner of a DNS server can configure the server to act as a primary source for any domain. DNS does not contain the concept of domain ownership.
If a company wants to configure its internal DNS server to be a primary source for the facebook. com domain, there is nothing to stop it.


So if we want to send our victims to a malicious web server, we can redirect them to our local Server(IP) so we have to set up a malicious DNS server.
i always loved this method ^_^ better than Zombies and Botnets ^_^


okay now we gonna set up our local server by changing the suffix xxx.xxx including our ip (method work like Zombie "JAVA LOOP" ^_^).

Best Zombie is "BEEF" you can do a research from Google and also install many plugins and modules of Metasploit in "BEEF".


Note that if you gonna use a webhost you have to edit with your own DNS including your Ip,
if you are doing this from Localhost just redirect your victims to your Ip in this format
example: your webhost=/44.142.145.21 ======>>> your ip ^_^

^_^ so we can spoof with a pro method ^_^

How this will Work ?

A=DNS ; B=your server(including your ip) ; C=your victim

So as you can see "C" visit "B" so "A" will do the job ^_^


Author: Mauriania Attacker
Source: Mauritania Hacker Team

1 comments:

Search

Blog Archive