During an internal penetration test, you observe the organization's recursive DNS server send a query for a deliberately fabricated host such as zxq.example.com. Almost instantly, an attacker floods the resolver with hundreds of spoofed DNS responses that contain different transaction IDs and point example.com to a malicious IP address. Which specific DNS poisoning technique is the attacker using?
The behavior described-triggering a resolver to ask for a random, non-existent subdomain and then spraying it with forged replies that iterate through possible transaction IDs-is characteristic of the Kaminsky cache-poisoning attack. By racing the legitimate authoritative reply, the attacker hopes the resolver will accept one of the spoofed answers, caching a malicious A record for the entire example.com zone. A DNS zone transfer attack attempts to download zone data, DNSSEC NSEC walking enumerates signed zones, and fast-flux DNS tunneling refers to rapidly changing address records used by botnets. None of those match the high-speed, transaction-ID-brute-force cache-poisoning method described.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is Kaminsky cache poisoning attack?
Open an interactive chat with Bash
How does a DNS resolver work in the context of this attack?
Open an interactive chat with Bash
How can organizations defend against the Kaminsky cache poisoning attack?
Open an interactive chat with Bash
Certified Ethical Hacker (CEH)
Network and Perimeter Hacking
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .