DNS exfiltration
0001-01-01
DNS exfiltration is a cybersecurity attack technique in which traffic is exfiltrated from a computer network using the DNS protocol.
DNS exfiltration may be performed in environments that restrict various forms of outbound traffic, but allow outbound DNS. It may also be performed in cases where DNS visibility is lacking but HTTP and other more traditional forms of traffic are scrutinized to evade detection.
Linux Persistence: Modular Software
2025-04-17 DFIR CTF persistence linux persistence apache asterisk
Linux Persistence: Web Shells
2025-04-16 DFIR persistence webshell linux persistence webshell apache nginx PHP
Linux Persistence: Rootkits
2025-04-15 DFIR persistence rootkit LKM linux persistence LKM rootkit LD_PRELOAD kprobe ftrace ld.so hooking
Defanging Linux LKM Rootkits With cleanup_module()
2025-04-05 Linux LKM rootkits EDR hooks incident response Linux LKM rootkit