Complete Basic Tutorial on DNS Hijacking

By -

Complete Basic Tutorial on DNS Hijacking


DNS Hijacking

DNS hijacking (sometimes said as DNS redirection) could be a style of malicious attack that overrides a computer’s TCP/IP settings to purpose it at a scallywag DNS server, thereby unsupportive the default DNS settings. In alternative words, once AN assaulter takes management of a laptop to change its DNS settings, in order that it currently points to a scallywag DNS server, the method is said as DNS hijacking.

As we have a tendency to all grasp, the “Domain Name System (DNS)” is especially answerable for translating a user friendly name like “google.com” to its corresponding science address “69.134.227.26”. Having a transparent plan of DNS and its operating will assist you higher perceive what DNS hijacking is all concerning. If you're fairly unaccustomed the thought of DNS, i'd advocate reading my previous post on however name System Works.

How DNS Hijacking Works?

As mentioned before, DNS is that the one that's answerable for mapping the user friendly domain names to their corresponding science addresses. This DNS server is owned  and maintained by your net service supplier (ISP) and plenty of alternative non-public business organizations. By default, your laptop is organized to use the DNS server from the ISP. In some cases, your laptop could even be exploitation the DNS services of alternative supposed organizations like Google. during this case, you're same to be safe and everything looks to figure commonly.

But, imagine a state of affairs wherever a hacker or a malware program gains unauthorized access to your laptop and changes the DNS settings, in order that your laptop currently uses one in every of the scallywag DNS servers that's owned  and maintained by the hacker. once this happens, the scallywag DNS server could translate domain names of fascinating websites (such as banks, search engines, social networking sites etc.) to science addresses of malicious websites. As a result, after you kind the URL of an internet site within the address bar, you'll be taken to a pretend web site rather than the one you're intending for. Sometimes, this will place you in deep trouble!

What square measure the risks of DNS Hijacking?

The dangers of DNS hijacking will vary and depend upon the intention behind the attack. several ISPs like “OpenDNS” and “Comcast” use DNS hijacking for introducing advertisements or assembling statistics. despite the fact that this will cause no serious injury to the users, it's thought-about as a violation of RFC standards for DNS responses.

Other dangers of DNS hijacking embody the subsequent attacks:

Pharming: this can be a sort of attack wherever a web site’s traffic is redirected to a different website that's a pretend one. as an example, once a user tries to go to a social networking web site like Facebook.com he is also redirected to a different web site that's full of pop-ups and advertisements. typically|this can be} often done by hackers so as to come up with advertising revenue.

Phishing: this can be a sort of attack wherever users square measure redirected to a malicious web site whose style (look and feel) matches specifically therewith of the first one. as an example, once a user tries to log in to his checking account, he is also redirected to a malicious web site that steals his login details.

What if you're already a victim of DNS hijacking?

If you believe that your laptop is infected with a malware program like DNSChanger, you would like not panic. it's fairly straightforward and simple to live through the injury caused by such programs. All you've got to try to to is, simply verify your current DNS settings to create certain that you just aren't exploitation any of these DNS IPs that square measure blacklisted. Otherwise re-configure your DNS settings as per the rules of your ISP.

How to stop DNS Hijacking?

In most cases, attackers build use of malware programs like a malicious program to hold out DNS hijacking. These DNS hijacking trojans square measure typically distributed as video and audio codecs, video downloaders, YoTube downloaders or as alternative free utilities. So, so as to remain protected, it's counseled to remain far from untrusted websites that provide free downloads. The DNSChanger trojan is AN example of 1 such malware that hijacked the DNS settings of over four million computers to drive a profit of concerning fourteen million USD through deceitful advertising revenue.

Also, it's necessary to vary the default word of your router, in order that it might not be doable for the assaulter to switch your router settings exploitation the default word that came with the industrial plant setting. For additional details on this subject you'll scan my alternative post on a way to Hack AN LAN ADSL Router.

Installing a decent antivirus program and keeping it up-to-date can give a good deal of protection to your laptop against any such attacks.

Comments

Post a Comment

Popular posts from this blog

Keyboard Shortcuts That you must learn

By -
Image
Keyboard Shortcuts That you must learn Getting used to using keyboard exclusively and leaving your mouse behind will make you much efficient at performing any task on window system.Some of the shortcuts that must be known Windows+R=Run menu This is usually followed by cmd=Command Prompt iexplore+"web address"=Internet Explorer compmgmt.msc=Computer Management dhcpmgmt.msc=DHCP Management dnsmgmt.msc=DNS  Management services.msc=Services eventvwr=Event Viewer dsa.msc=Active Directory users and Computers dssite.msc=Active Directory  Sites and Services Windows key + E= Explorer ALT+TAB=Switch between windows ALT,Space,X=Maximize Windows CTRL+SHIFT+ESC=Task Manger Windows key+Break=System Properties Windows key + F= Search Windows key + D=Hide/Display all windows Keep in mind that the "Right Click" key next to the right windows on keyboard.Using the arrows and that key can get just about anything done once you've opened up any prog
Read more

Stay Secured By IP Spoofing In Kali Linux or Ubuntu Using Torsocks

By -
Image
Stay Secured By IP Spoofing In Kali Linux or Ubuntu Using Torsocks torsocks  allows you to use most applications in a safe way with TOR. It ensures that DNS requests are handled safely and explicitly rejects any traffic other than TCP from the application you’re using. In this post we will cover IP spoofing in Kali Linux with torsocks which will allow users to connect to certain services that is banned to them.  torsocks  is an ELF shared library that is loaded before all others. The library overrides every needed Internet communication libc function calls such as connect() or gethostbyname(). This process is transparent to the user and if  torsocks  detects any communication that can’t go through the Tor network such as UDP traffic, for instance, the connection is denied. If, for any reason, there is no way for  torsocks  to provide the Tor anonymity guarantee to your application,  torsocks  will force the application to quit and stop everything.  In this article I will guide
Read more

How To Find Uploaded shell and Passwords By Google dorks (priv8 dorks)

By -
How To Find Uploaded shell and Passwords By Google dorks (priv8 dorks) How To Find Uploaded shell By Google dork (priv8 dorks) Go to Google.com and type these Dorks, and you will got a Lot of uploaded shells in Google serach results !! Dorks for finding shells  inurl:.php "cURL: ON MySQL: ON MSSQL: OFF"  "Shell" filetype:php intext:"uname -a:" "EDT 2010" intitle:"intitle:r57shell" [ phpinfo ] [ php.ini ] [ cpu ] [ mem ] [ users ] [ tmp ] [ delete ] inurl:"c99.php" & intext:Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout inurl:"c100.php" & intext:Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout intitle:"Shell" inurl:".php" & intext:Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update  Dorks for finding Passwords filetype:htpasswd htpasswd intitle:"index of" ".htpasswd" -intitle
Read more