fbpx

DNS Poisoning | What is it? |How to do it?

DNS(Domain name system) Poisoning also known as DNS cache poisoning.

In DNS poisoning the attacker alters the DNS records so that it can route the user to a fake website or the website which is controlled by the hacker.

This type of attack the victims will think that they are going to a real website but instead they are going to a fake website.

For e.g – They will write cybervie.com into the URL bar to visit the real website but because of DNS spoofing they will be transported to a fake website that will look like cybervie.com and they will end up giving their details to the hacker.

This creates a perfect condition for phishing attacks.

Methods of DNS spoofing/Poisoning

Man-In-The-Middle(MITM)

Hacker will intercept between the server and the user and change the user’s DNS every time the victim surf internet. Changing DNS means changing the destination IP address of the websites.

DNS poisoning Flowchart

DNS Hijacking

In DNS hijacking the the local DNS server is replaced by the forged and malicious server with IP addresses of attacker and genuine website name.

WHAT COULD GO WRONG IF YOUR DNS IS SPOOFED OR POISONED

  1. Data theft -> The attacker can compromise every type of data like your password, your credit card details, your address.
  2. Viruses/Malwares -> The attacker can download malicious software or viruses into the computer which will harm the computer badly.
  3. Stoped security updates -> If the internet security provider is spoofed it will not download the latest security updates and your device will be exposed to malware and trojans.

Tools

  1. Dnsspoof -> This tool navigates all the DNS to a fake local computer host file.
  2. Ettercap -> It is one of the best tool for man in the middle attacks(MITM) and it provides DNS spoof, arp spoof, and a lot more option for MITM
  3. Arpspoof -> This tool commands the IP address.

How to prevent DNS poisoning.

  1. Never click a link you don’t recognize.
  2. Flush you DNS cache to solve the poisoning.
  3. Use VPN.
  4. Scan your computer regularly.

About Cybervie

Cybervie provides best cyber security training program in hyderabad, India.This cyber security course enables you to detect vulnerablities of a system, wardoff attacks and manage emergency situations. Taking a proactive approach to security that can help organisations to protect their data, Cybervie has designed its training module based on the cyber security industry requirements with three levels of training in both offensive and defensive manner, and use real time scenarios which can help our students to understand the market up-to its standard certification which is an add on advantage for our students to stand out of competition in an cyber security interview.

More Info – Click Here

Share on facebook
Share on twitter
Share on linkedin
Share on whatsapp

Recent Posts

Follow Us on Youtube

Cyber Security Training Program 2020

Cyber security Course offered by Cybervie prepares students for a path of success in a highly demanding and rapidly growing field of cyber security. The course is completely designed with an adaptable mindset, where the program allows the student to complete the course work at their own pace while being able to complete weekly assignments. Hence, also making it convenient for busy working professionals to pursue the training to help them advance their career in cyber security.

Cybervie has designed the training module based on the cyber security industry requirements in both offensive and defensive manner, using real time scenarios which help our students to understand the market standards.

Sign up for our Newsletter

Interested in Cyber Security Training Program 2020 – Click Here