- Penetration Testing Bootcamp
- Jason Beltrame
- 247字
- 2021-07-02 21:35:58
Checking for DNS recursion with NSE
DNS recursion isn't typically an issue, but if you allow outside hosts to use your internal DNS servers for recursion, you are setting yourself up for potential attacks. DNS amplification attacks can be leveraged using these types of setup, where hackers will use these DNS servers to send spoofed requests to them, and they will respond back to the original host and, if there are a large number of these, a DDOS situation.
To check for DNS recursion, we can use Nmap with the NSE engine. The command is straightforward, as we will do a UDP scan on port 53 and turn on the recursive script with the command nmap -sU -p53 -script=dns-recursion HOST.
In this example, the DNS server is correctly set up as they do not allow DNS recursion:
root@pi-kali:~# nmap -sU -p53 --script=dns-recursion NS.XXX.NET
Starting Nmap 7.40 ( https://nmap.org ) at 2017-05-06 18:24 UTC
Nmap scan report for NS.XXX.NET (XXX.XXX.XXX.XXX)
Host is up (0.096s latency).
PORT STATE SERVICE
53/udpopen domain
Nmap done: 1 IP address (1 host up) scanned in 3.06 seconds
Next, this particular server allows recursion to happen and, hence, potentially participate in the DNS amplification attack:
root@pi-kali:~# nmap -sU -p53 --script=dns-recursion 1.xxx.xxx.xxx
Starting Nmap 7.40 ( https://nmap.org ) at 2017-05-06 18:24 UTC
Nmap scan report for 1.xxx.xxx.xxx
Host is up (0.27s latency).
PORT STATE SERVICE
53/udpopen domain
|_dns-recursion: Recursion appears to be enabled
Nmap done: 1 IP address (1 host up) scanned in 7.29 seconds
- Mastering JavaScript Functional Programming
- Mastering JavaScript Object-Oriented Programming
- TypeScript Blueprints
- Visual C++數(shù)字圖像模式識別技術(shù)詳解
- C#程序設(shè)計(jì)
- Advanced Oracle PL/SQL Developer's Guide(Second Edition)
- Lighttpd源碼分析
- R數(shù)據(jù)科學(xué)實(shí)戰(zhàn):工具詳解與案例分析
- 從零開始學(xué)Selenium自動(dòng)化測試:基于Python:視頻教學(xué)版
- Spring Boot從入門到實(shí)戰(zhàn)
- 片上系統(tǒng)設(shè)計(jì)思想與源代碼分析
- Fast Data Processing with Spark 2(Third Edition)
- Learn iOS 11 Programming with Swift 4(Second Edition)
- Visual C++.NET 2010開發(fā)實(shí)踐:基于C++/CLI
- 數(shù)據(jù)結(jié)構(gòu):Python語言描述