dns2proxy – Offensive DNS server


dns2proxy is an offensive DNS server that offers various features for post-exploitation once you’ve changed the DNS server of a victim.

dns2proxy - Offensive DNS server

It’s very frequently used in combination with sslstrip.

Features

  • Traditional DNS Spoofing
  • Implements DNS Spoofing via Forwarding
  • Detects and corrects changes for sslstrip to work

Usage

Using the spoof.cfg config file with the format:

Or you can use domains.cfg file to spoof all hosts of a domain (wildcard):

Hostnames at nospoof.cfg will not be spoofed.


Config Files

domains.cfg – resolve all hosts/subdomains for the listed domains with the given IP.

spoof.cfg – Spoof a single host with a given IP.

nospoof.cfg – Send always a legit response when responding for these hosts.

nospoofto.cfg – Don’t send fake responses to the IPs listed there.

victims.cfg – If not empty, only send fake responses to these IP addresses.

resolv.conf DNS server to forward legitimate queries to.

You can download dns2proxy here:

dns2proxy-master.zip

Or read more here.

Posted in: Hacking Tools, Networking Hacking Tools

, ,


Latest Posts:


tko-subs - Detect & Takeover Subdomains With Dead DNS Records tko-subs – Detect & Takeover Subdomains With Dead DNS Records
tko-subs is a tool that helps you to detect & takeover subdomains with dead DNS records, this could be dangling CNAMEs point to hosting services and more.
Arcane - Tool To Backdoor iOS Packages (iPhone ARM) Arcane – Tool To Backdoor iOS Packages (iPhone ARM)
Arcane is a simple script tool to backdoor iOS packages (iPhone ARM) and create the necessary resources for APT repositories.
SharpHose - Asynchronous Password Spraying Tool SharpHose – Asynchronous Password Spraying Tool
SharpHose is an asynchronous password spraying tool in C# for Windows environments that takes into consideration fine-grained password policies and can be run over Cobalt Strike's execute-assembly.
Axiom - Pen-Testing Server For Collecting Bug Bounties Axiom – Pen-Testing Server For Collecting Bug Bounties
Project Axiom is a set of utilities for managing a small dynamic infrastructure setup for bug bounty, basically a pen-testing server out of the box with 1-line.
Quasar RAT - Windows Remote Administration Tool Quasar RAT – Windows Remote Administration Tool
Quasar is a fast and light-weight Windows remote administration tool coded in C#. Used for user support through day-to-day administrative work to monitoring.
Pingcastle - Active Directory Security Assessment Tool Pingcastle – Active Directory Security Assessment Tool
PingCastle is a Active Directory Security Assessment Tool designed to quickly assess the Active Directory security level based on a risk and maturity framework.


Comments are closed.