Nmap Development mailing list archives
Re: [ncat] Thoughts about a --dns option?
From: Ron <ron () skullsecurity net>
Date: Thu, 26 Nov 2009 13:50:32 -0600
David Fifield wrote:
On Sat, Nov 14, 2009 at 07:10:56PM -0600, Ron wrote: I don't think something like this belongs in Ncat but it is very interesting. In your explanation, the "DNS server" isn't just any old DNS server, but a custom data-transfer program that understands the protocol, correct? I think this might work well implemented as a proxy server. That way anything could use it as a tunnel. David Fifield
Yeah, the DNS server has to be a custom server. The client doesn't necessarily need a custom DNS implementation to send data, which has given me interesting ideas (browser backdoor anyone?)
What I've done so far is put together a C program that implements it, and it's working to an extent. I need to play around with it and come up with a more general "protocol" that other apps can use.
I might re-visit combining this into Ncat once I have a stable independent program and protocol figured out.
Ron _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://seclists.org/nmap-dev/
Current thread:
- [ncat] Thoughts about a --dns option? Ron (Nov 14)
- Re: [ncat] Thoughts about a --dns option? David Fifield (Nov 26)
- Re: [ncat] Thoughts about a --dns option? Ron (Nov 26)
- Re: [ncat] Thoughts about a --dns option? David Fifield (Dec 27)
- Re: [ncat] Thoughts about a --dns option? Ron (Dec 27)
- Re: [ncat] Thoughts about a --dns option? Ron (Nov 26)
- Re: [ncat] Thoughts about a --dns option? David Fifield (Nov 26)