{"id":7857,"date":"2024-05-24T20:43:11","date_gmt":"2024-05-24T17:43:11","guid":{"rendered":"https:\/\/sunucucozumleri.com\/?p=7857"},"modified":"2024-05-24T20:43:11","modified_gmt":"2024-05-24T17:43:11","slug":"dns-sorgularini-ve-yanitlarini-kullanan-yeni-dos-saldirisi-dnsbomb","status":"publish","type":"post","link":"https:\/\/sunucucozumleri.com\/blog\/dns-sorgularini-ve-yanitlarini-kullanan-yeni-dos-saldirisi-dnsbomb\/","title":{"rendered":"DNS Sorgular\u0131n\u0131 ve Yan\u0131tlar\u0131n\u0131 Kullanan Yeni DoS Sald\u0131r\u0131s\u0131 &#8216;DNSBomb&#8217;"},"content":{"rendered":"<p>Siber g\u00fcvenlik ara\u015ft\u0131rmac\u0131lar\u0131, &#8220;<strong>DNSBomb<\/strong>&#8221; ad\u0131 verilen yeni ve g\u00fc\u00e7l\u00fc bir Hizmet Reddi (DoS) sald\u0131r\u0131s\u0131n\u0131 ortaya \u00e7\u0131kard\u0131.<\/p>\n<p>Bu sald\u0131r\u0131 , \u0130nternet altyap\u0131s\u0131na \u00f6nemli bir tehdit olu\u015fturan g\u00fc\u00e7l\u00fc, darbeli bir DoS sald\u0131r\u0131s\u0131 olu\u015fturmak i\u00e7in\u00a0Etki Alan\u0131 Ad\u0131 Sisteminin\u00a0(<a href=\"https:\/\/sunucucozumleri.com\/dns-domain-name-system-nedir-nasil-calisir\/\">DNS<\/a>) do\u011fas\u0131nda bulunan mekanizmalardan yararlan\u0131r .<\/p>\n<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_82_2 counter-hierarchy ez-toc-counter ez-toc-grey ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Makale \u0130\u00e7eri\u011fi<\/p>\n<span class=\"ez-toc-title-toggle\"><a href=\"#\" class=\"ez-toc-pull-right ez-toc-btn ez-toc-btn-xs ez-toc-btn-default ez-toc-toggle\" aria-label=\"\u0130\u00e7indekiler Tablosunu A\u00e7\/Kapat\"><span class=\"ez-toc-js-icon-con\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #999;color:#999\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #999;color:#999\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/span><\/a><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/sunucucozumleri.com\/blog\/dns-sorgularini-ve-yanitlarini-kullanan-yeni-dos-saldirisi-dnsbomb\/#DNS_Mekanizmalarindan_Yararlanmak\" >DNS Mekanizmalar\u0131ndan Yararlanmak<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/sunucucozumleri.com\/blog\/dns-sorgularini-ve-yanitlarini-kullanan-yeni-dos-saldirisi-dnsbomb\/#Azaltma_ve_Sektore_Mudahale\" >Azaltma ve Sekt\u00f6re M\u00fcdahale<\/a><\/li><\/ul><\/nav><\/div>\n<h2 id=\"h-exploiting-dns-mechanisms\" class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"DNS_Mekanizmalarindan_Yararlanmak\"><\/span><strong>DNS Mekanizmalar\u0131ndan Yararlanmak<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p><a href=\"https:\/\/dnsbomb.net\/\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">DNSBomb<\/a>\u00a0, zaman a\u015f\u0131m\u0131, sorgu toplama ve h\u0131zl\u0131 geri d\u00f6n\u00fc\u015f yan\u0131t\u0131 dahil olmak \u00fczere yayg\u0131n olarak uygulanan \u00e7e\u015fitli DNS mekanizmalar\u0131ndan yararlan\u0131r.<\/p>\n<p>Kullan\u0131labilirli\u011fi, g\u00fcvenli\u011fi ve g\u00fcvenilirli\u011fi sa\u011flamak i\u00e7in tasarlanan bu mekanizmalar, ustaca k\u00f6t\u00fc niyetli sald\u0131r\u0131 vekt\u00f6rlerine d\u00f6n\u00fc\u015ft\u00fcr\u00fcl\u00fcr.<\/p>\n<p>DNSBomb, d\u00fc\u015f\u00fck h\u0131zda g\u00f6nderilen DNS sorgular\u0131n\u0131 toplayarak ve bunlar\u0131 b\u00fcy\u00fck boyutlu yan\u0131tlara d\u00f6n\u00fc\u015ft\u00fcrerek, t\u00fcm DNS yan\u0131tlar\u0131n\u0131 k\u0131sa, y\u00fcksek hacimli periyodik patlamalara yo\u011funla\u015ft\u0131r\u0131r.<\/p>\n<figure id=\"attachment_7858\" aria-describedby=\"caption-attachment-7858\" style=\"width: 625px\" class=\"wp-caption aligncenter\"><img decoding=\"async\" class=\" wp-image-7858\" src=\"https:\/\/sunucucozumleri.com\/wp-content\/uploads\/2024\/05\/dnsbombattack-300x225.avif\" alt=\"dnsbombattack\" width=\"625\" height=\"469\" title=\"\" srcset=\"\/\/sunucucozumleri.com\/blog\/wp-content\/uploads\/2024\/05\/dnsbombattack-300x225.avif 300w, \/\/sunucucozumleri.com\/blog\/wp-content\/uploads\/2024\/05\/dnsbombattack.avif 610w\" sizes=\"(max-width: 625px) 100vw, 625px\" \/><figcaption id=\"caption-attachment-7858\" class=\"wp-caption-text\">Tehdit Modeli (Kaynak: DNSBomb)<\/figcaption><\/figure>\n<p>Bu ezici darbe ayn\u0131 anda hedef sistemleri sekteye u\u011fratabilir ve TCP\u00a0, UDP ve QUIC\u00a0dahil olmak \u00fczere \u00e7e\u015fitli ba\u011flant\u0131 t\u00fcrlerinde tam paket kayb\u0131na veya ciddi hizmet bozulmas\u0131na yol a\u00e7abilir .<\/p>\n<p>Ara\u015ft\u0131rmac\u0131lar, DNSBomb&#8217;u 10 ana DNS yaz\u0131l\u0131m\u0131, 46 genel DNS hizmeti ve yakla\u015f\u0131k 1,8 milyon a\u00e7\u0131k DNS \u00e7\u00f6z\u00fcmleyici \u00fczerinde kapsaml\u0131 bir \u015fekilde de\u011ferlendirdi.<\/p>\n<p>Bulgular endi\u015fe vericiydi: Test edilen t\u00fcm DNS \u00e7\u00f6z\u00fcmleyiciler, \u00f6nceki darbeli DoS sald\u0131r\u0131lar\u0131na k\u0131yasla daha pratik ve g\u00fc\u00e7l\u00fc DNSBomb sald\u0131r\u0131lar\u0131 ger\u00e7ekle\u015ftirmek i\u00e7in kullan\u0131labilir.<\/p>\n<p>K\u00fc\u00e7\u00fck \u00f6l\u00e7ekli deneyler, en y\u00fcksek darbe b\u00fcy\u00fckl\u00fc\u011f\u00fcn\u00fcn 20.000x&#8217;i a\u015fan bant geni\u015fli\u011fi y\u00fckseltme fakt\u00f6r\u00fcyle 8,7 Gb\/s&#8217;ye yakla\u015fabilece\u011fini g\u00f6sterdi.<\/p>\n<p>Bu sonu\u00e7lar, DNSBomb&#8217;un k\u00fcresel olarak internet hizmetlerinde \u00f6nemli kesintilere neden olma potansiyelini vurgulamaktad\u0131r.<\/p>\n<h2 id=\"h-mitigation-and-industry-response\" class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Azaltma_ve_Sektore_Mudahale\"><\/span><strong>Azaltma ve Sekt\u00f6re M\u00fcdahale<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Ke\u015ffe yan\u0131t olarak ara\u015ft\u0131rmac\u0131lar, etkili hafifletme \u00e7\u00f6z\u00fcmleri \u00f6nerdiler ve bulgular\u0131n\u0131 etkilenen t\u00fcm sat\u0131c\u0131lara sorumlu bir \u015fekilde bildirdiler.<\/p>\n<p>Bug\u00fcne kadar BIND, Unbound, PowerDNS ve Knot&#8217;un da aralar\u0131nda bulundu\u011fu 24 sat\u0131c\u0131 sorunu kabul etti ve sa\u011flanan \u00e7\u00f6z\u00fcmleri kullanarak yaz\u0131l\u0131mlar\u0131na aktif olarak yama uyguluyor.<\/p>\n<p>Ek olarak, DNSBomb&#8217;un yararland\u0131\u011f\u0131 g\u00fcvenlik a\u00e7\u0131klar\u0131n\u0131 gidermek i\u00e7in 10 CVE-ID atanm\u0131\u015ft\u0131r.<\/p>\n<ul>\n<li>Sekt\u00f6r \u00e7ap\u0131nda:\u00a0<a href=\"https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2024-33655\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">CVE-2024-33655<\/a><\/li>\n<li>D\u00fc\u011f\u00fcm:\u00a0<a href=\"https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2023-49206\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">CVE-2023-49206<\/a><\/li>\n<li>Basit DNS Plus:\u00a0<a href=\"https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2023-49205\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">CVE-2023-49205<\/a><\/li>\n<li>Teknesyum:\u00a0<a href=\"https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2023-28456\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">CVE-2023-28456<\/a>\u00a0,\u00a0<a href=\"https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2023-49203\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">CVE-2023-49203<\/a><\/li>\n<li>MaraDNS:\u00a0<a href=\"https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2023-49204\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">CVE-2023-49204<\/a><\/li>\n<li>Dnsmasq:\u00a0<a href=\"https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2023-28450\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">CVE-2023-28450<\/a>\u00a0,\u00a0<a href=\"https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2023-49207\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">CVE-2023-49207<\/a><\/li>\n<li>CoreDNS:\u00a0<a href=\"https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2023-28454\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">CVE-2023-28454<\/a>\u00a0,\u00a0<a href=\"https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2023-49202\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">CVE-2023-49202<\/a><\/li>\n<li>SDNS:\u00a0<a href=\"https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2023-49201\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">CVE-2023-49201<\/a><\/li>\n<\/ul>\n<p>Ara\u015ft\u0131rmac\u0131lar, DNS ve \u0130\u00e7erik Da\u011f\u0131t\u0131m A\u011flar\u0131 (CDN&#8217;ler) gibi &#8220;\u015feyleri&#8221; bir araya getirebilen herhangi bir sistem veya mekanizman\u0131n, darbeli DoS\u00a0trafi\u011fi\u00a0olu\u015fturmak i\u00e7in kullan\u0131labilece\u011fini vurguluyor .<\/p>\n<p>Siber g\u00fcvenlik toplulu\u011funu, DNSBomb tehdidini daha fazla ara\u015ft\u0131rmak ve azaltmak i\u00e7in g\u00f6sterilen \u00e7abaya kat\u0131lmaya davet ediyoruz. Bulgular, geli\u015fen siber tehditler kar\u015f\u0131s\u0131nda s\u00fcrekli tetikte olman\u0131n ve yenili\u011fin \u00f6nemini vurguluyor.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Siber g\u00fcvenlik ara\u015ft\u0131rmac\u0131lar\u0131, &#8220;DNSBomb&#8221; ad\u0131 verilen yeni ve g\u00fc\u00e7l\u00fc bir Hizmet Reddi (DoS) sald\u0131r\u0131s\u0131n\u0131 ortaya \u00e7\u0131kard\u0131. Bu sald\u0131r\u0131 , \u0130nternet altyap\u0131s\u0131na \u00f6nemli bir tehdit olu\u015fturan g\u00fc\u00e7l\u00fc, darbeli bir DoS sald\u0131r\u0131s\u0131 olu\u015fturmak i\u00e7in\u00a0Etki Alan\u0131 Ad\u0131 Sisteminin\u00a0(DNS) do\u011fas\u0131nda bulunan mekanizmalardan yararlan\u0131r . DNS Mekanizmalar\u0131ndan Yararlanmak DNSBomb\u00a0, zaman a\u015f\u0131m\u0131, sorgu toplama ve h\u0131zl\u0131 geri d\u00f6n\u00fc\u015f yan\u0131t\u0131 dahil olmak &hellip;<\/p>\n","protected":false},"author":12,"featured_media":7861,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[232],"tags":[],"class_list":["post-7857","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-blog"],"acf":[],"_links":{"self":[{"href":"https:\/\/sunucucozumleri.com\/blog\/wp-json\/wp\/v2\/posts\/7857","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/sunucucozumleri.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/sunucucozumleri.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/sunucucozumleri.com\/blog\/wp-json\/wp\/v2\/users\/12"}],"replies":[{"embeddable":true,"href":"https:\/\/sunucucozumleri.com\/blog\/wp-json\/wp\/v2\/comments?post=7857"}],"version-history":[{"count":0,"href":"https:\/\/sunucucozumleri.com\/blog\/wp-json\/wp\/v2\/posts\/7857\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/sunucucozumleri.com\/blog\/wp-json\/wp\/v2\/media\/7861"}],"wp:attachment":[{"href":"https:\/\/sunucucozumleri.com\/blog\/wp-json\/wp\/v2\/media?parent=7857"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/sunucucozumleri.com\/blog\/wp-json\/wp\/v2\/categories?post=7857"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/sunucucozumleri.com\/blog\/wp-json\/wp\/v2\/tags?post=7857"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}