#+HashtagPLUS
In

Menu

Post image 1
Post image 2
Post image 3
Post image 4
Post image 5
Post image 6
Post image 7
Post image 8
Post image 9
Post image 10
Post image 11
Post image 12
Post image 13
Post image 14
Post image 15
Post image 16
Post image 17
Post image 18
Post image 19
Post image 20
Post image 21
Post image 22
Post image 23
Post image 24
Post image 25
Post image 26
Post image 27
Post image 28
1 / 28
0

Weaponizing DHCP DNS Spoofing — A Hands-On Guide

Akamai·Ori David·about 1 month ago
#HIHEuh1f
#cybersecurity#threatintelligence#securityresearch#dhcp#dns#server
Reading 0:00
15s threshold

Blog Security Research Weaponizing DHCP DNS Spoofing — A Hands-On Guide Ori David is a Security Researcher at Akamai. His research is focused on offensive security, malware analysis, and threat hunting.  Introduction \n In the first part of this blog series we introduced a new set of attacks against Active Directory domains that use Microsoft Dynamic Host Configuration Protocol (DHCP) servers. These attacks enable threat actors to spoof DNS records in Active Directory Integrated DNS (ADIDNS) zones by abusing the DHCP DNS Dynamic Updates feature. We explored the feature’s operation and highlighted misconfigurations that could be abused by attackers to spoof sensitive DNS records.  \n In this second blog post, we aim to elaborate on some of the technical details that are required to exploit this attack surface.…

Continue reading — create a free account

Join HashtagPLUS to read full articles, follow hashtags, vote, and join the conversation.

Create free accountLog in
Read More