Quick Cookie Notification This site uses cookies, including for analytics, personalization, and advertising purposes. Leveraging the Metasploit Framework when automating any task keeps us from having to re-create the wheel as we can use the existing libraries and focus our efforts where it matters. To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced'. This attack works by sending random hostname queries to the target DNS server coupled with spoofed replies to those queries from the authoritative nameservers for that domain.Įventually, a guessed ID will match, the spoofed packet will get accepted, and the nameserver entries for the target domain will be replaced by the server specified in the NEWDNS option of this exploit. This exploit replaces the target domains nameserver entries in a vulnerable DNS cache server. Rapid7 Insight is your home for SecOps, equipping you with the visibility, analytics, and automation you need to unite your teams and amplify efficiency. If you continue to browse this site without changing your cookie settings, you agree to this use. For more information or to change your cookie settings, click here. This site uses cookies, including for analytics, personalization, and advertising purposes.