Certified Ethical Hacker (CEH v11) — Question 60

John, a professional hacker, decided to use DNS to perform data exfiltration on a target network. In this process, he embedded malicious data into the DNS protocol packets that even DNSSEC cannot detect. Using this technique, John successfully injected malware to bypass a firewall and maintained communication with the victim machine and C&C server.
What is the technique employed by John to bypass the firewall?

Answer options

• A. DNSSEC zone walking
• B. DNS cache snooping
• C. DNS enumeration
• D. DNS tunneling method

Correct answer: D

Explanation

The correct answer is D, DNS tunneling method, which allows data to be transmitted through DNS queries and responses, effectively bypassing firewalls. The other options, while related to DNS, do not specifically relate to the technique of embedding malicious data within DNS traffic to maintain communication and exfiltrate data.