Tag: analyst

Random subdomain attack

A Random Subdomain Attack, also known as a “Slow Drip” or “Domain Exhaustion” attack, is an attack method targeting the DNS infrastructure of a domain. Overview: In a Random Subdomain Attack, an attacker generates an overwhelming number of unique, random subdomains under a legitimate domain. These subdomains do not exist, but DNS resolvers attempt to…

November 16, 2024
DFIR addict

DFIR Addict Introduction I’m a DFIR addict. The DFIR journey for me has been life-changing and a fantastic experience to share with others. Every time the event log is processed on the endpoint, I feel anxiety and excitement. When you first start, it’s easy to get overwhelmed by the sheer number of events and their…

January 31, 2023

Random subdomain attack