Presentation is loading. Please wait.

Presentation is loading. Please wait.

DNS Tunneling.

Published byCornelius Boone Modified over 6 years ago

Similar presentations

Presentation on theme: "DNS Tunneling."— Presentation transcript:

1 DNS Tunneling

2 1 What is DNS?

3 Domain Name System The Domain Name System (DNS) is used to resolve human-readable hostnames into machine-readable IP addresses.

4 2 How does DNS Works?

5 How Does DNS Works? When you visit a domain such as ”facebook.com”, your computer follows a series of steps to turn the human-readable web address into a machine-readable IP address.

6 Request to a local DNS server

7 From local DNS to a root DNS server

8 From root DNS to a TLD DNS server

9 From TLD to Authoritative DNS server

10

11 DNS has a POWERFUL Passport!

12 The Concept of DNS Tunneling
3 The Concept of DNS Tunneling

13 DNS Tunneling DNS tunneling is the ability to tunnel another protocol through DNS. DNS tunneling can be used for: Command and Control. Data exfiltration. Tunneling any IP traffic.

14 Tunnel Components A controlled domain or subdomain.
A sever where to install DNS tunneling software. A client side component. Data encoded in DNS payload.  Some of the encoding techniques: Base32 Encoding. Base64 Encoding.

15 Request to a local DNS server
The PC encodes the message in a DNS payload.

16 From local DNS to a root DNS server

17 From root DNS to a TLD DNS server

18 From TLD to Authoritative DNS server
The authoritative DNS decodes the message and send the actual request to the internet.

19 From Authoritative DNS server to the Internet

20 From Authoritative DNS server to the DNS Client
The authoritative DNS encodes the message and sends it as DNS reply.

21 Decodes the Message The PC decodes the message That is inside
the DNS reply.

22

23 Detecting DNS Tunneling
4 Detecting DNS Tunneling

24 Frequency of DNS Requests

25 Existing DNS Tunneling Tools
5 Existing DNS Tunneling Tools

26 DNS Tunneling Tools SlowDNS. Iodine. OzymanDNS. Heyoka. DNScat (DNScat-B).

27 An application that tunnels your data over DNS Tunnel.
Demo using SlowDNS An application that tunnels your data over DNS Tunnel. Android App on Google Play.

28 Any Questions?

Download ppt "DNS Tunneling."

Similar presentations

DNS, Web, TCP Sequence Numbers EE122 Discussion 10/19/2011.

DNS, Web, TCP Sequence Numbers EE122 Discussion 10/19/2011.
Domain Name System (or Service) (DNS) Computer Networks Computer Networks Term B10.

Domain Name System (or Service) (DNS) Computer Networks Computer Networks Term B10.
20101 The Application Layer Domain Name System Chapter 7.

20101 The Application Layer Domain Name System Chapter 7.
IST 221 Internet Concepts and Applications Internet, WWW and HTML 1.

IST 221 Internet Concepts and Applications Internet, WWW and HTML 1.
Vocabulary URL = uniform resource locator: web address protocol –set of rules that networked computers follow in order to share data and coordinate communications.

Vocabulary URL = uniform resource locator: web address protocol –set of rules that networked computers follow in order to share data and coordinate communications.
1 What is Electronic Mail Exchanging information via computer networks Electronic mail addresses SMTP (Simple Mail Transfer Protocol) Client/Server based.

1 What is Electronic Mail Exchanging information via computer networks Electronic mail addresses SMTP (Simple Mail Transfer Protocol) Client/Server based.
Lecturer: Maxim Podlesny Sep 29 2008 CSE 473 File Transfer and Electronic Email in Internet.

Lecturer: Maxim Podlesny Sep CSE 473 File Transfer and Electronic in Internet.
Network Management System The Concept –From a central computer, network administrator can manage entire network Collect data Give commands –Moving gradually.

Network Management System The Concept –From a central computer, network administrator can manage entire network Collect data Give commands –Moving gradually.
Chapter 29 Domain Name System (DNS) Allows users to reference computer names via symbolic names translates symbolic host names into associated IP addresses.

Chapter 29 Domain Name System (DNS) Allows users to reference computer names via symbolic names translates symbolic host names into associated IP addresses.
Web Engineering we define Web Engineering as follows: 1) Web Engineering is the application of systematic and proven approaches (concepts, methods, techniques,

Web Engineering we define Web Engineering as follows: 1) Web Engineering is the application of systematic and proven approaches (concepts, methods, techniques,
DNS Tunneling Mihir Nanavati & Long Zhang {mihirn, April 19th 2010.

DNS Tunneling Mihir Nanavati & Long Zhang {mihirn, April 19th 2010.
Chapter 19 Binding Protocol Addresses (ARP) A frame transmitted across a physical network must contain the hardware address of the destination. Before.

Chapter 19 Binding Protocol Addresses (ARP) A frame transmitted across a physical network must contain the hardware address of the destination. Before.
PRACTICAL INTRODUCTION TO INTERNET TECHNOLOGY. Practical one PACKET DELAY AND LOSS IN INTERNET In this experiment, you will observe real delays and loss.

PRACTICAL INTRODUCTION TO INTERNET TECHNOLOGY. Practical one PACKET DELAY AND LOSS IN INTERNET In this experiment, you will observe real delays and loss.
Unit 2 - Hardware Networking. What is a network? A computer network is essentially a connection between two or more computers. This connection can be.

Unit 2 - Hardware Networking. What is a network? A computer network is essentially a connection between two or more computers. This connection can be.
17 Establishing Dial-up Connection to the Internet Using Windows 9x 1.Install and configure the modem 2.Configure Dial-Up Adapter 3.Configure Dial-Up Networking.

17 Establishing Dial-up Connection to the Internet Using Windows 9x 1.Install and configure the modem 2.Configure Dial-Up Adapter 3.Configure Dial-Up Networking.
1. Internet hosts:  IP address (32 bit) - used for addressing datagrams  “name”, e.g., ww.yahoo.com - used by humans DNS: provides translation between.

1. Internet hosts:  IP address (32 bit) - used for addressing datagrams  “name”, e.g., ww.yahoo.com - used by humans DNS: provides translation between.
APACHE INSTALL Linux: CentOS 6.5 WHAT IS APACHE Apache is an open source application which is governed by the GNU licensing for use and alteration of.

APACHE INSTALL Linux: CentOS 6.5 WHAT IS APACHE Apache is an open source application which is governed by the GNU licensing for use and alteration of.
DOMAIN NAME SYSTEM By Gazain Naeem. Domain Name System is the hierarchical computer system which is connected to the internet. It works like a telephone.

DOMAIN NAME SYSTEM By Gazain Naeem. Domain Name System is the hierarchical computer system which is connected to the internet. It works like a telephone.
Domain Name System: DNS To identify an entity, TCP/IP protocols use the IP address, which uniquely identifies the Connection of a host to the Internet.

Domain Name System: DNS To identify an entity, TCP/IP protocols use the IP address, which uniquely identifies the Connection of a host to the Internet.
The Domain Name System (DNS) – The online directory DNS Simplified.

The Domain Name System (DNS) – The online directory DNS Simplified.

Similar presentations

Ads by Google