Hacking DNS

Info

Level: Intermediate
Presenter: Eli the Computer Guy
Date Created: November 1, 2010
Length of Class: 45 Minutes

Tracks

Hacking
Computer Security /Integrity

Prerequisites

Knowledge of TCP/IP and Domain Name Resolution

Purpose of Class

This class teaches students how use DNS to redirect computer or network users to alternate websites or servers for security or malicious purposes.

Topics Covered

How DNS Works
Editing the HOSTS file
Alternate Public DNS
Planning a DNS Hack
Reasons to Hack DNS

Class Notes

Introduction
1. DNS resolves Domain Names to IP Addresses
2. Warning: Use at your own risk
DNS
1. HOSTS file is the local file that resolves Domain Names
2. Windows Location = C:\Windows\System32\drivers\etc
3. Example = 10.1.10.2 www.elithecomputerguy.com
4. In Vista/ Windows 7 First Open Notepad using “Run as Administrator” and then open the HOSTS file. Otherwise you will not be able to save your edits.
5. Computers FIRST try to Resolve a Domain Name with the HOSTS file, they then Go To the LOCAL DNS Server, and then they Query the PUBLIC DNS Server. If any server has a record the computer does not ask any other sources. SO if the HOSTS file has a record the computer uses that record and stops.
Using Alternate DNS

You do not have to use the Public DNS IP Addresses that your ISP gave you. You can use Alternate Public DNS Servers.
The benefit of using a server like OpenDNS.org is that they will prevent Domain Names for malicious websites from resolving. This is a HUGE security tool.
You can create your own Public DNS Server for Good/ Bad Purposes.

The DNS Attack

HOSTS file can be compromised either through manual editing, or through scripting. If users are logged in as USERS vs. ADMINISTRATORS there is far less chance that a script will be able to modify the HOSTS file.
By Wardriving or Plugging Into an Unsecured Network Jack You May be able to Hack the DNS Server. Routers/ Modems with default passwords are easy to Hack.
A clever, well disguised DNS Hack is very difficult to detect once it has been successfully implemented, and it is moderately difficult to circumvent if it is done by a network administrator to secure a network.

Final Thoughts

Hacking DNS is the EASIEST way to either protect or attack a network or computer

Resources

Eli the Computer Guy (437 Posts)

Eli the Computer Guy has 16 years experience in technology being the guy to fix "it". From the Army, to building out new satellite offices for the enterprise, to running his own shop with 9 full time employees Eli has real world experience with almost all systems that technicians will be working with. Eli has 1600 hours of formal technical beyond his Bachelors Degree in Criminal Justice on technologies ranging from Avaya PBX/ Audix to Microsoft, Red Hat Linux, MySQL, Cisco and much more.

Sandaru

Sir, How can we find that IP of a certain website?( i want to redirect to an image http://www.abc.com/file/logo.jpg or to a blog site as http://www.elithe.blogspot.com. How can i do that?)
Eli the Computer Guy

Ping the website… PING http://www.everymanit.com …
sam

do you need to know a programing language for a scrip?????
Eli the Computer Guy

Scripts are programming languages… You can write them in VBS, Perl, etc..
kumar s

Dear sir,the way you teach is awesome….
asif

grate teach m ur fan
SARTHAK

hatts offf!!!
just have no words to express the gratitude…. it is just lovable wat u do..
the way u make understanding regarding wat the lecture is abt is jus tremendous…
and i shall suggest each person going thrugh this site nd comments to b a part of it and donate for a very good cause ….wasting ur money on other unnecessary sites nd all the shitt stuff, do donate here instead!
my blessings to u mr. eli _the computer guY_….
may u lead the world…
thank u vryyyyyyy much for uploading ocean of knowledge just for FREE….keep going on we’re wid u!!!!

god BLEss….THANXSSS again!!!
:) :) :) :) :)
http://www.everymanit.com Rdgers

sir, can you please try to list the steps that we have to take when hacking the DNS.
Eli the Computer Guy

Basically you try editing the HOSTS file, or if you have access to the local DNS you can edit entries in it.
Corey88

Another way to protect your network is to blacklist all domains with a wildcard and remove only the sites you want to allow :)
swapnil more

Really nice sir, everymanit.com has the best and easiest learning videos, thanks for making it learn so easy and fast,,,,,,,:-)
emmamuel

sir i really enjoyed the teaching, i must say am grateful with it and i still need more explanation from u. thanks
business

Nowadays to find a similar Efficient and Effective SEO Automation software at one Time payment of US 99-00 is a rarity\
Vannesa Hodde

Nowadays to find a similar Efficient and Effective SEO Automation software at one Time payment of US 99-00 is a rarity\
siva

Sir can we have some specific videos on CCNP…
Matias

Sir, can you answer me this two cuestions???
If 10.1.10.2 is a local host, how do you edit that domain named 10.1.10.2?
And the other question is how do you edit the DNS of a wireless conection, so I can protect my wirless from junk pages…

Please help
And btw you have a great webpage and ery interesting videos, KEEP UP THE GOOD WORK!!!!!
http://yahoo.com Agbozo David

I want to be come an IT MAN but i have know one to help me can you people me
Siyat

I am quite impressed with your teaching methods.Thanks for your kindness.You are a real superstar!
Drew Johnston

Would you be able to give any more videos For beginner hacking? I have watched your first hacking video and it went from Beginner to Intermediate.
McDucky

I made “yt” redirect me to youtube’s ip, but I was sent to facebook :S
Ken

I can’t find the Hosts file.

I get to system32 but don’t see the pc file referenced.
I am using windows 7 home premium

Thanks,
harsh

system 64 bit use
Monty Bryant

hi eli i love your tutorials i watch all of them but was wondering in your recent hacking clases if you could update this video since it was made in 2010.. thanks :)

Eli the Computer Guy

Free Online Computer Training and Advice

Latest Video Classes

Latest Blog Posts