DNS DoS Attacks

So what is DNS anyway? DNS is domain name resolution protocol - it's how names like "yahoo.com" get turned into IP addresses like "10.20.30.40". It's a fundamental part of the way the internet routing system works.

DNS Black Hole Attack

A DNS denial of service can be achieved by blocking the DNS channel, and removing the ability of the sheep's system to resolve network and web requests. By funneling some or all of the sheep's DNS requests into this black hole, the attacker can successfully create a denial of service of network resources for the sheep.

See #EvilFOCA tool below.

Tools

EvilFOCA

Link: https://github.com/ElevenPaths/EvilFOCA

Tool for conducting various DNS attacks (and other types of attacks)

• Capable of conducting DHCP ACK Injection - attacker monitors DHCP exchanges, interferes by sending packets, attacker acts as fake DHCP server
• DNS Hijacking - hijacking the shee's DNS channel to control where the sheep's requests point them

Flags

Denial of Service denial of service attacks for denying users access to resources that they are otherwise entitled to access. DoS DoS at Layers 1 and 2: Layer 1 and 2 DoS Attacks CAM Table Overflow/MAC Flood: DoS/Mac Flood CAM Table Poisoning: DoS/Cam Poisoning DoS at Layers 3 and 4: Layer 3 and 4 DoS Attacks Syn Flood: DoS/SYN Flood Smurf Attack (Ping Flood): DoS/Smurf Attack DNS Attacks: DoS/DNS DNSSmurf Attack: DoS/DNSSmurf Wormhole Attack: DoS/Wormhole Attack Black Hole Attack: DoS/Black Hole Attack Byzantine Attack: DoS/Byzantine Attack Sleep Deprivation Attack: DoS/Sleep Deprivation Attack Stale Packets: DoS/Stale Packets Toolz: Hping  · Macof  · Tcpnice  · Hammer  · Tors Hammer Category:DoS  · Category:Attacks  · Category:Kali Attack Layers Flags  · Template:DoSFlag  · e