Common Information
| Type | Value |
|---|---|
| Value |
DNS - T1071.004 |
| Category | Attack-Pattern |
| Type | Mitre-Attack-Pattern |
| Misp Type | Cluster |
| Description | Adversaries may communicate using the Domain Name System (DNS) application layer protocol to avoid detection/network filtering by blending in with existing traffic. Commands to the remote system, and often the results of those commands, will be embedded within the protocol traffic between the client and server. The DNS protocol serves an administrative function in computer networking and thus may be very common in environments. DNS traffic may also be allowed even before network authentication is completed. DNS packets contain many fields and headers in which data can be concealed. Often known as DNS tunneling, adversaries may abuse DNS to communicate with systems under their control within a victim network while also mimicking normal, expected traffic.(Citation: PAN DNS Tunneling)(Citation: Medium DnsTunneling) |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2024-11-12 | 8 | Evilginx on DigitalOcean | ||
| Details | Website | 2024-11-12 | 3 | Autodiscover — Exchange Kelebek Etkisi | ||
| Details | Website | 2024-11-12 | 98 | The November 2024 Security Update Review | ||
| Details | Website | 2024-11-12 | 95 | Patch Tuesday Update - November 2024 | ||
| Details | Website | 2024-11-12 | 4 | Cyber Briefing: 2024.11.12 | ||
| Details | Website | 2024-11-12 | 37 | Microsoft’s November 2024 Patch Tuesday Addresses 87 CVEs (CVE-2024-43451, CVE-2024-49039) | ||
| Details | Website | 2024-11-12 | 40 | Microsoft’s November 2024 Patch Tuesday Addresses 87 CVEs (CVE-2024-43451, CVE-2024-49039) | ||
| Details | Website | 2024-11-12 | 96 | Zero Day Initiative — The November 2024 Security Update Review | ||
| Details | Website | 2024-11-12 | 1 | Secure VPN Low Prices | ||
| Details | Website | 2024-11-12 | 0 | Automate secure introduction of HashiCorp Vault clients without platform identity | ||
| Details | Website | 2024-11-12 | 0 | Will I Get Banned for Using a VPN? Unveil the Truth! | ||
| Details | Website | 2024-11-12 | 19 | New GootLoader Campaign Targets Users Searching for Bengal Cat Laws in Australia - CyberSRC | ||
| Details | Website | 2024-11-12 | 8 | Information Gathering — Web Edition Skills Assessment — HTB Academy | ||
| Details | Website | 2024-11-12 | 0 | Question followed by explanation | ISC2 Certified in Cybersecurity (CC) Part 2 | ||
| Details | Website | 2024-11-12 | 7 | 10 Best DNS Management Tools - 2025 | ||
| Details | Website | 2024-11-12 | 2 | Networking Basics: A Beginner’s Guide | ||
| Details | Website | 2024-11-12 | 39 | Portuguese Bank phishing (Portuguese version) — Silent Push Threat Intelligence | ||
| Details | Website | 2024-11-12 | 39 | Portuguese Bank phishing — Silent Push Threat Intelligence | ||
| Details | Website | 2024-11-12 | 41 | Android.FakeApp.1669 Trojan IOCs - SEC-1275-1 | ||
| Details | Website | 2024-11-12 | 47 | GoblinRAT Malware IOCs - SEC-1275-1 | ||
| Details | Website | 2024-11-12 | 99 | Microsoft November 2024 Patch Tuesday fixes 4 zero-days, 91 flaws | ||
| Details | Website | 2024-11-12 | 1 | Critical Patches Issued for Microsoft Products, November 12, 2024 | ||
| Details | Website | 2024-11-11 | 0 | What is Dynamic Host Configuration Protocol (DHCP)? | ||
| Details | Website | 2024-11-11 | 1 | A Comprehensive Guide to Networking: Building a Foundation for Cybersecurity Professionals | ||
| Details | Website | 2024-11-11 | 0 | Nmap: Recon & Discovery | EP.2 Descubrimiento de Host y Escaneo de puertos |