So you may be thinking however websites get DNS Poisoned or in alternative words, DNS Hijacked !
Recently, several Google’s had been damaged. like Google country, Google Malaya, Google Asian nation, Google Palestine, Google Serbia and Google African country. whereas many folks still doesn't perceive however hackers managed to deface such massive sites. during this article, i'll teach you guys however it works and the way hackers manage to DNS Poison a target.
Exploitation
1st of all, the hacker try’s to search out the Domain written account. Main written account will be found by victimisation Google or Wikipedia. (Example: If the hacker sets Google.com.au a target, he would move to Google and search”Official Domain written account Of Australia” or would move to Wikipedia and search “.au”. )
Once the hacker finds the most domain written account, he then starts to pentest the net application to search out vulnerability’s wherever users login. once the hacker finds a vulnerability (Example:SQL Injection) , he then try’s to access the server or the information victimisation that vulnerability. Once he gets access to the information, he's then ready to see all users login details (Usernames/Passwords/Email/ secret Reset Key). The hacker then try’s to access to its targets account victimisation the data provided from the information.
Domain Names Servers
When the hacker gains access to its targets domain instrument panel victimisation the user login details, he then has management of all domain names coupled thereto account. The hacker will then amendment its targets name servers and get in touch with details. If the hacker desires its target to be DNS hijacked, he straightforward changes all passwords and login details. If the hacker desires to DNS poison its target, he solely changes the name servers. dynamic the name servers would enable the hacker to vary from its previous server to its new server (New server = Hackers server). Once the name servers square measure modified to the hackers server, the hacker then has full management of that web site. He will then add his own page (deface page) on the name that he took management of. Once a the name servers square measure modified, it then takes most twenty four hours for it to vary globally (Normally it takes around half-dozen hours).
I hope you learned one thing from this text. If you have got any queries, be at liberty to comment. this text has been written by Mr-Xploiter Team PakXploiters I Hope You Will Understand
No comments:
Post a Comment