Sponsored by Keepnet Labs

Local DNS Hacking : Force your End Users to use “your site” Laugh at mates 1

20 Oct
By Cyber Security, How to ...? , 0 Comments

Local DNS Hacking

Force your End Users to use “your site”

OK OK, this is not real hacking but it’s fun 🙂 As well as there are some attack types, where the browser is been hijacked so the User can’t go to some specific web pages or the user will be forced to open that page as soon as they use they Internet browser, where the user will be directed to the FAKE/ phishing web page or malware loaded local site)

By default, when a Windows PC User tries to open a website from a browser, Windows will try to resolve the website name to its IP address from the local DNS cache.

The local cache is stored :

C:\Windows\System32\drivers\etc\hosts

If this fails, it will query the host file and if there is no entry to the website there , then it will contact the DNS server which is set up in your NIC (Network Card) .

If there is any entry in the local cache , the PC will load or block that site depending on your settings. To make sure there is nothing in the DNS cache, you have to clear it so the little fun trick can work on your “victim” user or if you can :

open CMD and type “ipconfig /flushdns” or restart the DNS service from the services tab.

Open the file via typing “C:\Windows\System32\drivers\etc\hosts” in to the search area in your start menu

This will open the HOST File for you ( it will ask you, how you want to open the file type, select via NOTEPAD) , which is inside the “etc” section of your drivers

add an entry as below:

127.0.0.1 domainname.com

(domainname.com being the website you want to block. Save the hosts file outside the etc folder and then move it there, replacing the older version, as Windows won’t let you save the file there directly. Also make sure there’s no extension like .txt at the end of the file name) 

This way whenever a user tries to go to anything.domainname.com, their browser redirects them to 127.0.0.1 which is the local host. Or maybe you can redirect them to an HTML page stating the reason why that page is blocked from within your organization.

PS: It’s always a good practice to “copy the original” HOST file, so when the FUN is over, everything can be loaded to its original state.

Enjoy 🙂

Erdal

Hacking is easy by Erdal Ozkaya

Hacking is easy by Erdal Ozkaya

Share this post

Author

Erdal is an Australian IT Professional with business development & management skills who focuses on securing the Cyber Space & sharing his real-life skills as a Security Adviser, Speaker, Lecturer, Author and Cybersecurity Architect.

Leave a Reply

Your email address will not be published. Required fields are marked *

Related Posts

13 Sep

Effective cybersecurity requires participation from all

Ask a random person on the street what cybersecurity means to him or her, and you might get... read more

Hacker Halted Feedback Erdal
23 Oct

Hacker Halted Feedback – 15

Hacker Halted Feedback EC Council's Hacker Halted feedback to Wayne Bruce and I, from their official twitter account Erdal (more…) read more

30 Mar

Disabling the Mail app embedded in Windows 10?

Disabling the Mail app embedded in Windows 10 read more

Are you under cyberattack
25 Jun

Vulnerable Networks and Services – a Gateway for Intrusion

Vulnerable Networks and Services - a Gateway for Intrusion Communication and network protocols form a big part of the cyber-attack... read more

hackers mindset
12 Apr

Understanding hackers mindset in 2021

Understanding hackers mindset in 2021 There has been an accelerated growth of cybercrime over the last decade. Costs related to... read more

Cloud Security Interview Dr Erdal Ozkaya
11 Oct

Cloud Security Interview (CART00N )

Cloud Security Interview (cartoon ) In this episode, Omid Mahboubi reached out to the end-user and the vendor community... read more

Masterclass Webinar by Dr erdal Ozkaya
10 Dec

Developing and Maintaining Secure Products : Free Master Class 2021

Developing and  Maintaining Secure Products Here is the recoding link for the ones who missed the session by EC Council... read more

COVID19 and Cyber Risk
21 Apr

COVID19 and Cyber Risk – Fight against cybercrime

COVID19 and Cyber Risk The current circumstance of COVID-19 can increase organizations vulnerability to cyber-attacks, phishing attempts and fraud. All... read more

Hacking Countermeasures Erdal Ozkaya
29 May

Free Hacking Course : Hacking Countermeasures 4 weeks

Free Hacking Course : Hacking Countermeasures In this FREE COURSE subject, students will learn how to scan, test, hack and... read more

14 Dec

Brand Protection Congress 2016 Free to join

Brand protection congress what a great event!. it was a pleasure to deliver the keynote on “Importance of Cybersecurity... read more