dclay Posted September 10, 2015 Share Posted September 10, 2015 I have seen enough posts to understand that dnspoof is basically broken unless used against a fresh computer, however i believe there is a solution to every problem.......so i ask the question: Has anyone worked out how to use dnspoof against a computer that has already built a dns cache?? Quote Link to comment Share on other sites More sharing options...
Vulture Posted September 10, 2015 Share Posted September 10, 2015 This has been an issue for awhile, however there are TTLs on the DNS cache so if you are spoofing long enough (usually 5min - 1hr) it will expire and do a new query which DNSpoof should intercept. Have you setup an environment and watched wireshark for the DNS responses? Now, there is further issues where some iOS/Android devices have internal datasets of blocks of IPs that a domain can be accepted from. So it is getting much more difficult to spoof the high profile domains like google/apple/facebook due to this collaboration. Though, as you said there are always ways around this, it just nothing is going to be automated. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.