Search results
Results from the Health.Zone Content Network
Extension Mechanisms for DNS ( EDNS) is a specification for expanding the size of several parameters of the Domain Name System (DNS) protocol which had size restrictions that the Internet engineering community deemed too limited for increasing functionality of the protocol. The first set of extensions was published in 1999 by the Internet ...
Domain fronting. After TLS encryption is established, the HTTP header reroutes to another domain hosted on the same CDN. Domain fronting is a technique for Internet censorship circumvention that uses different domain names in different communication layers of an HTTPS connection to discreetly connect to a different target domain than is ...
Voice phishing, or vishing, [1] is the use of telephony (often Voice over IP telephony) to conduct phishing attacks. Landline telephone services have traditionally been trustworthy; terminated in physical locations known to the telephone company, and associated with a bill-payer. Now however, vishing fraudsters often use modern Voice over IP ...
Session poisoning (also referred to as "session data pollution" and "session modification") is a method to exploit insufficient input validation within a server application. Typically a server application that is vulnerable to this type of exploit will copy user input into session variables. The underlying vulnerability is a state management ...
An example of an IDN homograph attack; the Latin letters "e" and "a" are replaced with the Cyrillic letters "е" and "а". The internationalized domain name (IDN) homograph attack is a way a malicious party may deceive computer users about what remote system they are communicating with, by exploiting the fact that many different characters look alike (i.e., they are homographs, hence the term ...
Cache pollution. Cache pollution describes situations where an executing computer program loads data into CPU cache unnecessarily, [1] thus causing other useful data to be evicted from the cache into lower levels of the memory hierarchy, degrading performance. For example, in a multi-core processor, one core may replace the blocks fetched by ...
Replay attack. A replay attack (also known as a repeat attack or playback attack) is a form of network [1] attack in which valid data transmission is maliciously or fraudulently repeated or delayed. [1] This is carried out either by the originator or by an adversary who intercepts the data and re-transmits it, possibly as part of a spoofing ...
Website spoofing. Website spoofing is the act of creating a website with the intention of misleading readers that the website has been created by a different person or organization. Normally, the spoof website will adopt the design of the target website, and it sometimes has a similar URL. [1] A more sophisticated attack results in an attacker ...