Certified Ethical Hacker (CEH v13) — Question 245
John, a professional hacker, decided to use DNS to perform data exfiltration on a target network. In this process, he embedded malicious data into the DNS protocol packets that even DNSSEC cannot detect. Using this technique, John successfully injected malware to bypass a firewall and maintained communication with the victim machine and C&C server.
What is the technique employed by John to bypass the firewall?
Answer options
- A. DNSSEC zone walking
- B. DNS cache snooping
- C. DNS enumeration
- D. DNS tunneling method
Correct answer: D
Explanation
The correct answer is D, DNS tunneling method, as it involves embedding data within DNS queries and responses, effectively bypassing firewalls. The other options, such as DNSSEC zone walking, DNS cache snooping, and DNS enumeration, do not involve the direct exfiltration of data through the DNS protocol in the same manner and are primarily reconnaissance techniques or mechanisms related to DNS security.