Shulou(Shulou.com)06/01 Report--

Vulnerability principle:

DNS protocol supports the use of axfr-type records for regional transmission to solve the problem of master-slave synchronization. If the administrator does not restrict the source from which records are allowed to be obtained when configuring the DNS server, it will lead to a DNS domain delivery vulnerability.

Recurrence of vulnerabilities:

1. Under Linux, we can use the dig command to send dns requests. We can use dig @ your-ip www.vulhub.org to get the domain name www.vulhub.org to get the A record on the target dns server.

two。 Send a dns request of type axfr: dig @ your-ip-t axfr vulhub.org

It can be seen that I have obtained all the sub-domain name records of vulhub.org, where there is a DNS domain transfer vulnerability.

3. We can also scan for this vulnerability with nmap script: nmap-- script dns-zone-transfer.nse-- script-args "dns-zone-transfer.domain=vulhub.org"-- Pn-p 53 your-ip

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.