May. 28, 2008
So, we had yet another OWASP – meeting here in Stockholm, Sweden yesterday. I must say I was pleased to see that so many people took the time to attend and listen to us three speakers.
I held yet another speech on SQL injection and yet again overestimated my ability to deliver slides at a pace of 0.78 minutes per slide. Skipping through a few of them gave me just the little time I needed to finish up with a short demo 
After a few requests for the presentation I decided to put it online together with the small DNS server and samle code I used to demonstrate the DNS-channeling parts.
The DNS server has a brief help describing each parameter. Basically in order to try it out, it needs to be run on either:
- An authorative DNS in the zone against which we are tunneling our queries. Please note that in the event of a zone having multiple DNS servers assigned to it, all queries will NOT end up at the same resolver.
- On the host assigned as the DNS server on the victim DB server
When starting the dns_server.pl script a zone for which it answer queries needs to be specified. This is done with the “-q” option. In my cheat sheet I am using the zone inj.cqure.net and therefore need to start the DNS server like this: ./dns_server.pl -q inj.cqure.net
A zip-file containing the PDF presentation, a subset of the cheat sheet I used and my small DNS server is available for download from here.
Feel free to drop me a line if you have any questions.
