Cache Poisoning Detection via ONZRA's CacheAudit

Jose Avila jose at onzra.com
Fri Aug 1 15:20:45 CDT 2008


In light of new attack vectors DNS Cache Poisoning discovered by Dan  
Kaminsky, ONZRA has developed a free Open Source (BSD License) tool  
called CacheAudit. This tool allows recursive providers to detect  
cache poisoning events using cache dumps from their DNS servers. Along  
with releasing this tool, ONZRA has also released a white paper  
describing the validation process.

Main Tool Page: http://www.onzra.com/cacheaudit.html
White Paper: http://www.onzra.com/RecursiveDNSCacheAuditingWhitepaper.pdf


Jose

--
Jose Avila III
ONZRA
www.onzra.com




More information about the NANOG mailing list