News‎ > ‎

DNS Shenanigans

posted Nov 12, 2013, 1:27 PM by Nickosaurus Hax
Long time no post! Well, I've been up to some stuff in the background. At Kiwicon 7 this last weekend I presented some of my latest research, which has been focused on Bitsquatting (as introduced by Artem Dinaburg back in 2011). My research took bitsquatting in a different direction; rather than focusing on a single domain (e.g. fbcdn.net or microsoft.com) I went for the jugular of the Internet: the root-servers.net bit-flips. I also registered all flips for the gtld-servers too for good measure.

My results were pretty good. Over 18 months I've seen close to 9 million requests come to my bit-flipped domains, from victims all around the world. I have worked with our local registry, NZRS to ensure .nz is protected and to utilise their contacts to spread the concern for TLD hijacking. 

If anyone is doing similar interest and would like pcaps or access to the reporting interface, get in touch with me at nick.freeman@security-assessment.com and I'll see what I can do. My slides can be found at my employer's website, at Security-Assessment.com



For those of you who haven't been, I highly recommend Kiwicon. It is full of great talks and great people, and has a relaxed culture which makes it just that much more enjoyable and easy to meet new people. Best prepare your liver, though.

Comments