Browsing tag
A previously undocumented backdoor has been observed targeting Linux systems with the goal of corralling the machines into a botnet and acting as a conduit for downloading and installing rootkits. Qihoo 360’s Netlab security team called it B1txor20 “based on its propagation using the file name ‘b1t,’ the XOR encryption algorithm, and the RC4 algorithm […]
The cyberworld is constantly evolving, and with evolution comes new methods of committing crimes. DNS poisoning is one such threat that might not get the attention it deserves. The increase in cybercrimes has impacted businesses globally while companies spend millions of dollars on preventing cyber-attacks. But, still, 68% of the business leaders feel that their […]
The DNS-over-HTTPS (DoH) protocol has been a hot topic for debate for a few months. The protocol encrypts DNS queries and adds more privacy to the user. What is DNS-Over-HTTPS? For those who don’t know, a DNS (Domain Name Server) translates website address from a URL to an IP address, which your computer connects to. Up […]
Gobuster is a tool used to brute-force: URIs (directories and files) in web sites. DNS subdomains (with wildcard support). Virtual Host names on target web servers. Oh dear God.. WHY!? Because I wanted: … something that didn’t have a fat Java GUI (console FTW). … to build something that just worked on the command […]
Inspired by @tavisio This project is meant to be an All-in-one Toolkit to test further DNS rebinding attacks and my take on understanding these kind of attacks. It consists of a web server and pseudo DNS server that only responds to A queries. The root index of the web server allowes to configure and […]
What is DNS and How Does It Work A Domain Name System, or DNS, takes a familiar and understandable website name like Hackread.com and turns it into an IP address. Whenever you enter Hackread.com or any other web address, your browser automatically does a DNS Query against a DNS server, which supplies the hostname. Next, […]
On 31st July 2019, internet users within Kazakhstan experienced a show of dismay unseen before. Suddenly, hundreds of website could not be accessed. The first report was seen to be made by Manshuq Media on Facebook where they explained the issue in a post as seen below: The post translated from Kazakh. This came forward […]
Introduction Dr. ROBOT is a tool for Domain Reconnaissance and Enumeration. By utilizing containers to reduce the overhead of dealing with dependencies, inconsistency across operating sytems, and different languages, Dr. ROBOT is built to be highly portable and configurable. Use Case: Gather as many public facing servers that a target organization possesses. Querying DNS resources […]
There are over 4.39 billion people currently using the Internet worldwide. Like online laws and regulations; Internet speed also varies from country to country. Your Internet service provider (ISP) may claim to provide the fastest Internet service in town but reality can be far from the truth and that’s where Internet speed test websites come […]
Karkoff creates a timeline of the command execution which can be “extremely” useful when responding to this type of threat. The IT security researchers at Cisco’s Talos threat research team have discovered a new malware that has been developed by the threat actors behind the infamous DNSpionage campaign – The researchers are calling it Karkoff, […]
Threat actors behind the new malware campaign DNSpionage created a new remote administrative tool that supports HTTP and DNS communication with C&C Server that operates by attackers. Based on a recent incident, the DNSpionage campaign which is developed and operates by APT 34 hacking group to perform MITM Attack to steal the authentication details through […]
The app is called WiFi Finder – connect to hotspots. WiFi Finder, a popular and widely downloaded hotspot finder app designed for Android devices has been identified to be exposing passwords of WiFi networks for over two million networks. The exposed database was identified by GDI Foundation member and security researcher Sanyam Jain. According to […]
VPN is a billion dollar industry and lately, it has become a vital part of users conscious about their online privacy – Here are the top 10 VPN services for 2019. If you are an Internet user, VPN should be part of your online life but choosing a reliable VPN can be a tough nut to crack. Therefore today […]
The Domain Name System is vulnerable to multiple cyberattacks, so the organization has requested to implement better security measures According to network security and ethical hacking experts from the International Institute of Cyber Security, the Internet Corporation for Assigned Names and Numbers (ICANN) has called for a collective effort to develop a security technology to […]
Does your VPN leaks DNS data? Does the DNS testing tool you’re using shows actual or sponsored results for affiliate marketing? Virtual private network (VPN) users are increasing at a great pace due to growing privacy concerns and numerous VPN options, including both paid and free. But many of us make the wrong choice and […]
To test the security of its data, Russia is considering disconnecting its Internet service for a short period of time. The test will affect all the data sent by Russian citizens or organizations as Internet access would be limited only within the national territory, meaning that they will not be routed internationally. The test has […]
Netizens mark your calendars, Feb 1, 2019, will be a great day for the Internet as many participating websites will be compliant with EDNS (Extension Mechanism for DNS). EDNS removes the size restrictions currently imposed in the original DNS protocols created in 1987 under RFC1035. Users do not need to do anything as backward compatibility […]
If you want to ensure optimal privacy while surfing the web, a VPN (virtual private network) is the only reliable option. In this regard, a majority of web and smartphone users rely upon free VPN services, which according to the latest research is a risky step. In 2017, researchers identified that 38% of Android VPN apps on […]
DarkHydrus is back in action with a new variant of RogueRobin malware to target Middle Eastern Politicians by abusing Google Drive. The primary focus of cybercriminals nowadays is to use the infrastructure of genuine services in their attacks in order to prevent detection from security tools. The same strategy has been adopted by DarkHydrus group […]
Pentesting is all about showing and reporting problems in web/mobile applications. This is the most popular part of cyber security which every researcher/security enthusiast want to do. Because it gives a brief knowledge how to penetrate any web application. Pentesting is done by information gathering. There are many tools/scripts available over the internet which can […]
Download the app and toggle on it to generate a VPN profile that will automatically reroute the DNS traffic using the 1.1.1.1 DNS servers. On April 1, 2018, Cloudflare and APNIC launched the 1.1.1.1 public DNS service to speed up the searching process for web addresses faster and more secure. It is basically a DNS […]