DNS amplification

Anatomy of an attack – DNS amplification

December 14, 2015

Track:  Technical

Author: Vann Abernethy, Field CTO, NSFOCUS

binary-823342_1920DNS amplification attacks ramp up the power of a botnet when targeting a victim.  The basic technique of a DNS amplification attack is to spoof the IP of the intended target and send a request for a large DNS zone file to any number of open recursive DNS servers.  The DNS servers blindly respond to the request, sending the large DNS zone response to the attack target.  (more…)