|
|
|
|
|
|
by iagox86
4284 days ago
|
|
|
Hey, I'm the author of the talk, but I'm not the one who posted this. I'll give you some context :) It's the slides from a talk I gave yesterday at Derbycon - https://www.derbycon.com. It was recorded, but it doesn't look like the recording is up just yet - it will be on http://irongeek.com in the next couple days (and maybe tweeted from @irongeek_adc sooner - he's already posted a few videos from talks later than mine, but I was in kind of a weird room). Anyway, this talk doesn't really have anything to do with DNSSEC. These attacks would work just fine with or without DNSSEC. It's simply abusing DNS the way DNS was supposed to work. And finally, I'll definitely be posting more information (releasing the tool, the video, etc) on my own twitter account - @iagox86. |
|
|
https://github.com/iagox86/dnscat2
I see shell/exec/upload/download payloads mentioned in the command protocol docs, very cool.