tag:blogger.com,1999:blog-3296471108082693838.post1931289141773143707..comments2023-07-12T05:52:08.476-03:00Comments on w00tsec: Wildcard DNS, Content Poisoning, XSS and Certificate PinningBernardo Rodrigueshttp://www.blogger.com/profile/09470949514402700579noreply@blogger.comBlogger9125tag:blogger.com,1999:blog-3296471108082693838.post-67528598169062901532014-04-03T09:39:05.188-03:002014-04-03T09:39:05.188-03:00There was a problem on their internal DNS servers,...There was a problem on their internal DNS servers, it didn't matter which resolver you were using. Other DNS servers may be affected if they have the same stripping rule, but I think only Google servers had that.Bernardo Rodrigueshttps://www.blogger.com/profile/09470949514402700579noreply@blogger.comtag:blogger.com,1999:blog-3296471108082693838.post-71198714888309173692014-04-03T03:31:30.490-03:002014-04-03T03:31:30.490-03:00Thank you for the post.
> I kept testing diffe...Thank you for the post.<br /><br />> I kept testing different URL's until I found a weird behavior on Google DNS Servers. When typing URL's containing a domain you control followed by a certain number of "-" and the wildcard domain from Google, the resolved IP would be the one from the URL you control.<br /><br />Above is a bug of only google dns?Anonymoushttps://www.blogger.com/profile/11257955324174798433noreply@blogger.comtag:blogger.com,1999:blog-3296471108082693838.post-84969340279126309072014-04-02T04:48:45.946-03:002014-04-02T04:48:45.946-03:00云总你居然用了正则:)云总你居然用了正则:)myreadnoteshttps://www.blogger.com/profile/10502583822769724659noreply@blogger.comtag:blogger.com,1999:blog-3296471108082693838.post-8541686696488839262014-04-01T23:16:58.493-03:002014-04-01T23:16:58.493-03:00if you find some vulnerabilities of alibaba group,...if you find some vulnerabilities of alibaba group, please contact us. lol. 云舒https://www.blogger.com/profile/10872357265363073606noreply@blogger.comtag:blogger.com,1999:blog-3296471108082693838.post-22134776200616454532014-04-01T11:15:06.189-03:002014-04-01T11:15:06.189-03:00Excellent write up! Even I could understand it. I ...Excellent write up! Even I could understand it. I truly lol'd at this,<br />"if you're in Turkey right now you don't need to do nothing, the Turkish Telecom does all the MITM job for you".<br />It seems likely to be caused by an internationalized domain name related issue; would be nice if someone could confirm it.<br /><br />You did a good job, w00t w00t!!!Ellie Khttps://www.blogger.com/profile/11231840376889029260noreply@blogger.comtag:blogger.com,1999:blog-3296471108082693838.post-79351119050140155862014-04-01T10:56:24.684-03:002014-04-01T10:56:24.684-03:005000$ (5k)5000$ (5k)Bernardo Rodrigueshttps://www.blogger.com/profile/09470949514402700579noreply@blogger.comtag:blogger.com,1999:blog-3296471108082693838.post-72154088000149021952014-04-01T05:32:41.407-03:002014-04-01T05:32:41.407-03:00got 500000$ or 5000$ from google?got 500000$ or 5000$ from google?云舒https://www.blogger.com/profile/10872357265363073606noreply@blogger.comtag:blogger.com,1999:blog-3296471108082693838.post-26308056234827304592014-04-01T00:03:01.018-03:002014-04-01T00:03:01.018-03:00Very nice Bernando. Congrats for the findings and ...Very nice Bernando. Congrats for the findings and keep up the good work!<br /><br />SShttps://www.blogger.com/profile/16456034990657036324noreply@blogger.comtag:blogger.com,1999:blog-3296471108082693838.post-88563683792366692182014-03-31T14:34:56.479-03:002014-03-31T14:34:56.479-03:00Nice work! Abusing wildcard DNS introduces tons mo...Nice work! Abusing wildcard DNS introduces tons more attack scenarios. Thanks for sharing it.James Kettlehttps://www.blogger.com/profile/03270155456684307605noreply@blogger.com