Top Posts Tagged with #dns-encoding

The awesome talk by @Voulnet at the Northern Security Conference (nsc.frl) discussed various techniques that are used in malware to ‘obfuscate’ the real inner workings of said malware.

One of the techniques I learned about is “doing a DNS lookup, parse the IP as characters (4 bytes per IP) and inject that into the code”.

The post-talk discussion I had with him got me wondering if this would work on The Mainframe too. Just take IPv4 addresses that are the integer representation of EBCDIC characters and bind them to a dns-entry.

My idea was that once the correct ip-addresses (that resolve to EBCDIC chars) were ‘DNS-queryable’ I could just load that into the REXX and execute it.

After a (somewhat) long night and an afternoon I came up with a reference implementation of doing just that...

#mainframe #rexx #dns-encoding #eeek

•18+ Adults Only

Watch Anya Live on Cam

Anya is live and ready to show you everything. Watch her strip, dance, and perform exclusive shows just for you. Interact in real-time and make your fantasies come true.

✓ Live Streaming✓ Interactive Chat✓ Private Shows✓ HD Quality

Anya is LIVE right now

FREE

Free to watch • No registration required • HD streaming