Hacking DNS
Loading...
Uploaded by elithecomputerguy on Dec 12, 2010
Info
Level: Intermediate
Presenter: Eli the Computer Guy
Date Created: November 1, 2010
Length of Class: 45 Minutes
Tracks
Hacking
Computer Security /Integrity
Prerequisites
Knowledge of TCP/IP and Domain Name Resolution
Purpose of Class
This class teaches students how use DNS to redirect computer or network users to alternate websites or servers for security or malicious purposes.
Topics Covered
How DNS Works
Editing the HOSTS file
Alternate Public DNS
Planning a DNS Hack
Reasons to Hack DNS
Class Notes
Introduction
DNS resolves Domain Names to IP Addresses
Warning: Use at your own risk
DNS
HOSTS file is the local file that resolves Domain Names
Windows Location = C:\Windows\System32\drivers\etc
Example = 10.1.10.2 www.elithecomputerguy.com
In Vista/ Windows 7 First Open Notepad using "Run as Administrator" and then open the HOSTS file. Otherwise you will not be able to save your edits.
Computers FIRST try to Resolve a Domain Name with the HOSTS file, they then Go To the LOCAL DNS Server, and then they Query the PUBLIC DNS Server. If any server has a record the computer does not ask any other sources. SO if the HOSTS file has a record the computer uses that record and stops.
Using Alternate DNS
You do not have to use the Public DNS IP Addresses that your ISP gave you. You can use Alternate Public DNS Servers.
The benefit of using a server like OpenDNS.org is that they will prevent Domain Names for malicious websites from resolving. This is a HUGE security tool.
You can create your own Public DNS Server for Good/ Bad Purposes.
The DNS Attack
HOSTS file can be compromised either through manual editing, or through scripting. If users are logged in as USERS vs. ADMINISTRATORS there is far less chance that a script will be able to modify the HOSTS file.
By Wardriving or Plugging Into an Unsecured Network Jack You May be able to Hack the DNS Server. Routers/ Modems with default passwords are easy to Hack.
A clever, well disguised DNS Hack is very difficult to detect once it has been successfully implemented, and it is moderately difficult to circumvent if it is done by a network administrator to secure a network.
Final Thoughts
Hacking DNS is the EASIEST way to either protect or attack a network or computer
- 225 likes, 5 dislikes
-
Uploader Comments (elithecomputerguy)
Top Comments
-
bored watching the entire video?
Fast results: click to 21:20
1 month ago 17
-
You should show DNS poisoning at more advance level.
Your videos are a GREAT refresher.....and I am sure many of rookies are appreciating it very much. I have camera phobia, other wise i would do these videos too :) keep up the good work
3 months ago 10
All Comments (89)
-
wow
-
Thank Eli, now I know how to prevent these kinds of attacks on my domain, and keep it secure! :)
-
@cazyblood3 I do believe you mean DNA. Domain Name Service does not equal finger print.
-
thumbs up :)
keep up the good work
waiting for more videos :D
-
Very informative and educational. Great job man.
-
Thats windows xp
-
ty i was looking for someone to explain things clearly altough its a long vid its really educativ and easy to remember
-
hello can someone send me a link , so i learn about dns then watch this video im a beginner ,,,,, please help , thanks a lot .
- 43:54
How to Hack a Web Site - Dr. Susan Loveland - Lunchtime Talks in Science and Mathematicsby AdamsState40,322 views
- 3:40
DNS HACKINGby nohector109,988 views
- 57:38
Introduction to Networkingby elithecomputerguy26,513 views
- 0:11
Mark Zuckerberg's 10 evil secondsby 73inches729,324 views
- 51:19
Linux Network Configurationby elithecomputerguy28,132 views
- 7:53
Terminal Tricks & Hacksby kinatonchi15,655 views
- 1:09:40
Introduction to Hackingby elithecomputerguy73,696 views
- 32:45
Introduction to Programmingby elithecomputerguy8,405 views
- 11 videosIT Courses
- 1:01:21
Introduction to Voice Over IPby elithecomputerguy24,052 views
- 1:16:49
Introduction to Cloud Computingby elithecomputerguy36,232 views
- 5:13
How to download the best hack toolsby MaxADSL99556,294 views
- 53:41
Introduction to Serversby elithecomputerguy22,286 views
- 48:08
Introduction to Linuxby elithecomputerguy31,539 views
- 9:47
Cisco Certifications are not Worth IT!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!by booduh09912,690 views
- 3:57
How To DDOS A Website (Crash It)by sirbushythethird364,365 views
- 27:42
VPN - Virtual Private Networkingby elithecomputerguy27,084 views
- 0:30
How To Hack Email Passwords - Email Password Crackerby wllowl118,288 views
- 50:09
The Secret History of Hacking (Complete)by GBPPR226,868 views
- 3:43
Sondaje Vesicalby TTSpisapedales73,026,925 views
DNS is like fingerprint
cazyblood3 1 month ago
@cazyblood3 no... the MAC address would be like the fingerprint... MAC addresses are unique for EVERY network interface in the world (supposedly)
elithecomputerguy 4 weeks ago 3
@elithecomputerguy MAC addresses can be easily spoofed.
megaton12 4 days ago
@megaton12 true, but that will be another class....
elithecomputerguy 3 days ago
OK so what if i search for google in google.com and then i click the first result of the search .Will it work the same way as entering google.com in the address bar does?
F145H220 3 months ago
@F145H220 yes because the search result is still pointing to the domain name, and the domain name resolution has been redirected by you.
elithecomputerguy 3 months ago