dnscat2: Command and Control over the DNS
In this article, we learn DNS tunnelling through an amazing tool i.e. DNScat2
Table of Content :
- Introduction to DNS
- Introduction to DNScat
- Installation
- DNS tunnelling
- Conclusion
Introduction to DNS
The Domain Name System (DNS) associate’s URLs with their IP address. With DNS, it’s conceivable to type words rather than a series of numbers into a browser, enabling individuals to look for sites and send messages utilizing commonplace names. When you look for the domain name in a browser, it sends a question over to the DNS server to coordinate the domain with its IP. When found, it utilizes the IP to recover the site’s content. Most astonishingly, this entire procedure takes just milliseconds. For all this working, it uses port 53.
Introduction to DNScat
DNScat is such praised tool because it can create a command and control tunnel over the DNS protocol which lets an attacker work in stealth mode. You can access any data along with uploading and downloading files and to get a shell. For this tool to work over 53 port, you don’t need to have authoritative access to DNS server, you can just simply establish your connection over port 53 and it will be faster and it will still be sensed as usual traffic. But it makes its presence well known in the packet log.
FUll Article Read Here
CA | 19+ Yrs | Driving Growth for 300+ Startups with Expert Financial, Tax & Compliance Solutions
1 周??
Founder & CTO - ReConfirm | Effortlessly Secure
5 年Johan Bakker Luuk Spreeuwenberg
Deployment Specialist/Team Leader @ Skyone | Multicloud, Devops, Security
5 年Carlos Henrique Victório
Deployment Specialist/Team Leader @ Skyone | Multicloud, Devops, Security
5 年Lucas F. A. Souza
AUSites Cyber Solutions Linux RHCSA?CNA?CyberSecurity? IEEE ?SyS Admin?NCSA Vulnerability Research?Penetration Testing?Independent Consultant*
5 年Nice tool? ..