This course teaches how to automatically find RFC compliance bugs in DNS nameservers. The learning outcomes include understanding the intricacies of DNS features, identifying RFC compliance errors, and utilizing automatic test generation tools like Ferret. The course covers skills such as generating zone files, creating queries, and testing DNS implementations. The teaching method involves a presentation of the SCALE approach and the Ferret tool, along with real-world examples of bugs found in popular DNS implementations. The intended audience for this course includes software developers, cybersecurity professionals, and individuals interested in DNS protocol testing and compliance.
SCALE - Automatically Finding RFC Compliance Bugs in DNS Nameservers
Overview
Syllabus
Intro
Many DNS Implementations
DNS Software needs to be absolutely
How the Domain Name System Wo
DNS is way more complex than people
BIND Crash Remote Exploitation
BIND Crash Disclosure
Standard Automated Testers are insufficie
Our Approach
FERRET: Tool based on SCALE for DN
Test Generation Module
Challenge - Generating Valid Zone
Exhaustive Model Coverage with Test Ge
Bugs Found and Confirmed in Ope source DNS Implementations
Summary
Taught by
USENIX
