Via Metasploit Blog -
AR of Securebits released a new DNS poisoning tool today. The DNS Multiple Race Exploiter is unique in that it can overwrite any A record by using a CNAME response. This differs from any of the existing public tools (including those in Metasploit, which only poison uncached "A" records and "NS" records). Note for lazy IPS/IDS developers, this tool uses a static TTL of 0x7BEDABED in all spoofed replies.
------------------------
I was a little slow on posting this...but it wasn't my fault.
Blogger's automatic anti-spam bot had my blog locked for the past two days. But luckily, it was reviewed and unlocked this morning.
No comments:
Post a Comment