Domain Name Hijacking Technology

Sinhack.com

Recently, several domain name hijacking incidents occurred. First, Baidu was hijacked, and T00LS was hijacked twice. Then, Xiao Kai hijacked the Domain Name of the lightning plan.
After Xiao Kai hijacked lightning, many friends asked me how to hijack the domain name. To tell the truth, domain name hijacking is not my strength, but I only know its principles and hijacking methods, let's talk about what I think.

In fact, domain name hijacking is to resolve the domain name to other places to achieve our purpose.
For example, if the SINHACK domain name is resolved to the IP address of my local machine, you can modify the resolution address and resolve it to the Baidu website through some means. Then, when the sinhack domain name is opened, the Baidu page appears, this is also called domain name hijacking.

Let's talk about the Domain Name Hijacking technology I know.

First, it is also the most commonly used method of Xiao Kana. This method requires you to have strong language communication skills, that is, the so-called flicker. Why can Xiao Kai deal with the lightning plan within several minutes, in fact, this is the case. Because an error occurred while opening the Domain Name of the lightning plan that day, I went to tool.chinaz.com and checked that the lightning domain name was from xinnet. Then I contacted xinnet customer service, the customer service provided some information about the domain name registrar and found the website of the domain name registrar through Baidu. Here, you can contact the Customer Service through online customer service or by phone to say that your domain name cannot be opened, the domain name password cannot be logged in for a series of exchanges. The ultimate goal is to allow the customer service to help you modify or tell you the password for domain name management. The next step is to allow the customer service to help you modify the dns ip address of the domain name, to achieve the purpose of deception.

The second method is to intrude into the DNS server and modify the resolution address. It is said that T00ls has fallen, and the authenticity remains to be investigated, the last hijacking of Baidu was also caused by the fall of the Baidu domain name registrar server, which modified Baidu's resolution IP address. xinnet and hichina are the main domain name registrar in China, we can intrude into xinnet and hichina for domain name hijacking, and intrude into the DNS resolution server is not only intrude into xinnet and hichina, because it is indeed difficult to intrude into xinnet and hichina, if there is a technology, you don't need to use Domain Name Hijacking. It's good to directly intrude into the target station. I am not very familiar with the specific method of querying the DNS server here. Let's talk about what I think is feasible, that is to query the domain name agency at the lower level. Generally, domain name agents are virtual host suppliers. They get what we think through intrusion or social engineering. For example, they get the management permissions of the virtual host management platform, alternatively, the social worker can modify the resolution address to the user where the domain name belongs.

The third method is evil, that is, ARP spoofing. To use netfuke for ARP spoofing, we only need to take a C-segment server and upload netfuke. After enabling ARP, we can directly redirect the domain name of the target IP address. Here you can go online and look for a tutorial.