Dailydave: DNS Guess 2 for the day

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Dailydave mailing list archives

DNS Guess 2 for the day

From: Dave Aitel <dave () immunityinc com>
Date: Sat, 12 Jul 2008 16:56:35 -0400

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

So you don't really want to spoof the client. You want to spoof the 
resolver. So you pretend to be a resolver below it, and pass it along a 
fake request (with a TXID), and then immediately send him the spoofed 
response (since you specified the TXID) and his port is known. He then 
sends you the response (which is the one you spoofed him) and is poisoned.

- -dave

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFIeRqDtehAhL0gheoRAjo2AJ9bbk3v6CmajHC3h+vPGbpa4Z7o+QCfR1jf
CTakU4SaHHnQiwIh9fUUwsA=
=iZ/k
-----END PGP SIGNATURE-----

_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave

By Date By Thread

Current thread:

DNS Guess 2 for the day Dave Aitel (Jul 12)
- <Possible follow-ups>
- Re: DNS Guess 2 for the day Petja van der Lek (Jul 13)
  - Re: DNS Guess 2 for the day Parity (Jul 13)
  - Re: DNS Guess 2 for the day Paul Vixie (Jul 13)
- Re: DNS Guess 2 for the day piggly wiggly (Jul 13)
  - Re: DNS Guess 2 for the day Jon Oberheide (Jul 14)