DetailedDraft

CAPEC-598DNS Spoofing

Abstraction
Detailed
Status
Draft

Description

An adversary sends a malicious ("NXDOMAIN" ("No such domain") code, or DNS A record) response to a target's route request before a legitimate resolver can. This technique requires an On-path or In-path device that can monitor and respond to the target's DNS requests. This attack differs from BGP Tampering in that it directly responds to requests made by the target instead of polluting the routing the target's infrastructure uses.

Related attack patterns· 1

CAPEC-194 (ChildOf)

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
DNS Cache Poisoning
CAPEC
DNS Rebinding
CAPEC
DNS Blocking
CAPEC
DHCP Spoofing
CAPEC
Contradictory Destinations in Traffic Routing Schemes
CAPEC
SoundSquatting
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.