Hacking DNS
Info
- Level: Intermediate
- Presenter: Eli the Computer Guy
- Date Created: November 1, 2010
- Length of Class: 45 Minutes
Tracks
- Hacking
- Computer Security /Integrity
Prerequisites
- Knowledge of TCP/IP and Domain Name Resolution
Purpose of Class
- This class teaches students how use DNS to redirect computer or network users to alternate websites or servers for security or malicious purposes.
Topics Covered
- How DNS Works
- Editing the HOSTS file
- Alternate Public DNS
- Planning a DNS Hack
- Reasons to Hack DNS
Class Notes
- Introduction
- DNS resolves Domain Names to IP Addresses
- Warning: Use at your own risk
- DNS
- HOSTS file is the local file that resolves Domain Names
- Windows Location = C:\Windows\System32\drivers\etc
- Example = 10.1.10.2 www.elithecomputerguy.com
- In Vista/ Windows 7 First Open Notepad using “Run as Administrator” and then open the HOSTS file. Otherwise you will not be able to save your edits.
- Computers FIRST try to Resolve a Domain Name with the HOSTS file, they then Go To the LOCAL DNS Server, and then they Query the PUBLIC DNS Server. If any server has a record the computer does not ask any other sources. SO if the HOSTS file has a record the computer uses that record and stops.
- Using Alternate DNS
- You do not have to use the Public DNS IP Addresses that your ISP gave you. You can use Alternate Public DNS Servers.
- The benefit of using a server like OpenDNS.org is that they will prevent Domain Names for malicious websites from resolving. This is a HUGE security tool.
- You can create your own Public DNS Server for Good/ Bad Purposes.
- The DNS Attack
- HOSTS file can be compromised either through manual editing, or through scripting. If users are logged in as USERS vs. ADMINISTRATORS there is far less chance that a script will be able to modify the HOSTS file.
- By Wardriving or Plugging Into an Unsecured Network Jack You May be able to Hack the DNS Server. Routers/ Modems with default passwords are easy to Hack.
- A clever, well disguised DNS Hack is very difficult to detect once it has been successfully implemented, and it is moderately difficult to circumvent if it is done by a network administrator to secure a network.
- Final Thoughts
- Hacking DNS is the EASIEST way to either protect or attack a network or computer
Resources
11 Responses to Hacking DNS
Leave a Reply
Sir, How can we find that IP of a certain website?( i want to redirect to an image http://www.abc.com/file/logo.jpg or to a blog site as http://www.elithe.blogspot.com. How can i do that?)
Ping the website… PING http://www.everymanit.com …
do you need to know a programing language for a scrip?????
Scripts are programming languages… You can write them in VBS, Perl, etc..
Dear sir,the way you teach is awesome….
grate teach m ur fan
hatts offf!!!
just have no words to express the gratitude…. it is just lovable wat u do..
the way u make understanding regarding wat the lecture is abt is jus tremendous…
and i shall suggest each person going thrugh this site nd comments to b a part of it and donate for a very good cause ….wasting ur money on other unnecessary sites nd all the shitt stuff, do donate here instead!
my blessings to u mr. eli _the computer guY_….
may u lead the world…
thank u vryyyyyyy much for uploading ocean of knowledge just for FREE….keep going on we’re wid u!!!!
god BLEss….THANXSSS again!!!
:) :) :) :) :)
sir, can you please try to list the steps that we have to take when hacking the DNS.
Basically you try editing the HOSTS file, or if you have access to the local DNS you can edit entries in it.
Another way to protect your network is to blacklist all domains with a wildcard and remove only the sites you want to allow :)
Really nice sir, everymanit.com has the best and easiest learning videos, thanks for making it learn so easy and fast,,,,,,,:-)