|
|
|||
| Rule General Information |
|---|
| Release Date: | 2022-02-21 | |
| Rule Name: | Tool DNSLog Platform dnslog.cn Detected | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | The DNSLog platform is used to send the evidence of execution by using DNS protocol in the case of no evidence directly in the response, which is used to judge whether the vulnerability exists. It is a blind injection technology. This signature detects the DNSLog platform dnslog.cn. | |
| Impact: | An attacker can use dnslog.cn to verify the existence of the vulnerability. | |
| Affected OS: | Windows, Linux, Others | |
| Reference: | ||
| Solutions |
|---|
| Usually, access to dnslog.cn should not occur in the enterprize intranet. If it appears that someone is trying to verify a vulnerability, the administrator should judge whether the behavior is malicious and then decide to allow the traffic or not. |