Cache Poisoning Detection via ONZRA's CacheAudit

Jose Avila jose at
Fri Aug 1 15:20:45 CDT 2008

In light of new attack vectors DNS Cache Poisoning discovered by Dan  
Kaminsky, ONZRA has developed a free Open Source (BSD License) tool  
called CacheAudit. This tool allows recursive providers to detect  
cache poisoning events using cache dumps from their DNS servers. Along  
with releasing this tool, ONZRA has also released a white paper  
describing the validation process.

Main Tool Page:
White Paper:


Jose Avila III

More information about the NANOG mailing list