{"id":476921,"date":"2023-08-09T09:05:02","date_gmt":"2023-08-09T09:05:02","guid":{"rendered":""},"modified":"2023-09-05T11:13:39","modified_gmt":"2023-09-05T11:13:39","slug":"dns-rebinding-attack","status":"publish","type":"wiki","link":"https:\/\/oneproxy.pro\/kr\/wiki\/dns-rebinding-attack\/","title":{"rendered":"DNS \ub9ac\ubc14\uc778\ub529 \uacf5\uaca9"},"content":{"rendered":"

DNS \ub9ac\ubc14\uc778\ub529 \uacf5\uaca9\uc740 \uc545\uc758\uc801\uc778 \ud589\uc704\uc790\uac00 \uc6f9 \ube0c\ub77c\uc6b0\uc800\uc640 \ud574\ub2f9 \ubcf4\uc548 \uba54\ucee4\ub2c8\uc998\uc744 \uc545\uc6a9\ud558\uae30 \uc704\ud574 \uc0ac\uc6a9\ud558\ub294 \uc815\uad50\ud55c \ubc29\ubc95\uc785\ub2c8\ub2e4. \uc774\ub294 DNS(Domain Name System)\uc758 \uace0\uc720\ud55c \uc2e0\ub8b0\ub97c \ud65c\uc6a9\ud558\uc5ec \uc6f9 \ube0c\ub77c\uc6b0\uc800\uc5d0\uc11c \uc2dc\ud589\ud558\ub294 SOP(Same-Origin Policy)\ub97c \uc6b0\ud68c\ud569\ub2c8\ub2e4. \uc774 \uacf5\uaca9\uc740 \ub77c\uc6b0\ud130, \uce74\uba54\ub77c, \ud504\ub9b0\ud130 \ub610\ub294 \ub0b4\ubd80 \uae30\uc5c5 \uc2dc\uc2a4\ud15c\uacfc \uac19\uc740 \ub124\ud2b8\uc6cc\ud06c \uc11c\ube44\uc2a4\uc640 \uc0c1\ud638 \uc791\uc6a9\ud558\ub294 \uc6f9 \uc0ac\uc774\ud2b8\ub97c \ubc29\ubb38\ud558\ub294 \uc0ac\uc6a9\uc790\ub97c \ud45c\uc801\uc73c\ub85c \uc0bc\ub294 \ub370 \uc0ac\uc6a9\ub420 \uc218 \uc788\uc2b5\ub2c8\ub2e4. \uacf5\uaca9\uc790\ub294 DNS \uc751\ub2f5\uc744 \uc870\uc791\ud558\uc5ec \uc911\uc694\ud55c \uc815\ubcf4\uc5d0 \ubb34\ub2e8\uc73c\ub85c \uc561\uc138\uc2a4\ud558\uac70\ub098, \uc784\uc758 \ucf54\ub4dc\ub97c \uc2e4\ud589\ud558\uac70\ub098, \uae30\ud0c0 \uc545\uc758\uc801\uc778 \uc791\uc5c5\uc744 \uc218\ud589\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n

DNS \ub9ac\ubc14\uc778\ub529 \uacf5\uaca9\uc758 \uae30\uc6d0\uacfc \ucd5c\ucd08 \uc5b8\uae09\uc758 \uc5ed\uc0ac<\/h2>\n

DNS \ub9ac\ubc14\uc778\ub529 \uac1c\ub150\uc740 Daniel B. Jackson\uc774 2005\ub144 \uc11d\uc0ac \ub17c\ubb38\uc5d0\uc11c \ucc98\uc74c \uc18c\uac1c\ud588\uc2b5\ub2c8\ub2e4. \uadf8\ub7ec\ub098 \uc774 \uacf5\uaca9\uc740 2007\ub144 \uc5f0\uad6c\uc6d0\ub4e4\uc774 \uc6f9 \ube0c\ub77c\uc6b0\uc800\ub97c \ud65c\uc6a9\ud558\ub294 \uc2e4\uc6a9\uc801\uc778 \uad6c\ud604\uc744 \ubc1c\uacac\ud55c \uc774\ud6c4 \uc0c1\ub2f9\ud55c \uc8fc\ubaa9\uc744 \ubc1b\uc558\uc2b5\ub2c8\ub2e4. \uc6f9 \uc560\ud50c\ub9ac\ucf00\uc774\uc158 \ubcf4\uc548 \uc804\ubb38\uac00\uc778 Jeremiah Grossman\uc740 \ub2e4\uc74c\uacfc \uac19\uc740 \ubcf4\uace0\uc11c\ub97c \ubc1c\ud45c\ud588\uc2b5\ub2c8\ub2e4. 2007\ub144 \ube14\ub85c\uadf8 \uac8c\uc2dc\ubb3c\uc5d0\uc11c\ub294 DNS \ub9ac\ubc14\uc778\ub529\uc744 \uc0ac\uc6a9\ud558\uc5ec SOP\ub97c \uc6b0\ud68c\ud558\uace0 \ud53c\ud574\uc790\uc758 \ubc29\ud654\ubcbd \ub4a4\uc5d0 \uc788\ub294 \ub124\ud2b8\uc6cc\ud06c \uc7a5\uce58\ub97c \uc190\uc0c1\uc2dc\ud0a4\ub294 \ubc29\ubc95\uc744 \uc124\uba85\ud569\ub2c8\ub2e4. \uadf8 \uc774\ud6c4\ub85c DNS \ub9ac\ubc14\uc778\ub529\uc740 \uacf5\uaca9\uc790\uc640 \ubc29\uc5b4\uc790 \ubaa8\ub450\uc758 \uad00\uc2ec \uc8fc\uc81c\uac00 \ub418\uc5c8\uc2b5\ub2c8\ub2e4.<\/p>\n

DNS \ub9ac\ubc14\uc778\ub529 \uacf5\uaca9\uc5d0 \ub300\ud55c \uc790\uc138\ud55c \uc815\ubcf4<\/h2>\n

DNS \ub9ac\ubc14\uc778\ub529 \uacf5\uaca9\uc5d0\ub294 \uacf5\uaca9\uc790\uac00 \ud53c\ud574\uc790\uc758 \uc6f9 \ube0c\ub77c\uc6b0\uc800\ub97c \uc18d\uc5ec \uc784\uc758 \ub3c4\uba54\uc778\uc5d0 \uc758\ub3c4\ud558\uc9c0 \uc54a\uc740 \uc694\uccad\uc744 \ud558\ub3c4\ub85d \ud558\ub294 \ub2e4\ub2e8\uacc4 \ud504\ub85c\uc138\uc2a4\uac00 \ud3ec\ud568\ub429\ub2c8\ub2e4. \uacf5\uaca9\uc740 \uc77c\ubc18\uc801\uc73c\ub85c \ub2e4\uc74c \ub2e8\uacc4\ub97c \ub530\ub985\ub2c8\ub2e4.<\/p>\n

    \n
  1. \n

    \ucd08\uae30 \uc561\uc138\uc2a4<\/strong>: \ud53c\ud574\uc790\uac00 \uc545\uc131 \uc6f9\uc0ac\uc774\ud2b8\ub97c \ubc29\ubb38\ud558\uac70\ub098 \uc545\uc131 \ub9c1\ud06c\ub97c \ud074\ub9ad\ud558\ub3c4\ub85d \uc720\ub3c4\ub429\ub2c8\ub2e4.<\/p>\n<\/li>\n

  2. \n

    \ub3c4\uba54\uc778 \ud655\uc778<\/strong>: \ud53c\ud574\uc790\uc758 \ube0c\ub77c\uc6b0\uc800\ub294 \uc545\uc131 \uc6f9\uc0ac\uc774\ud2b8\uc640 \uad00\ub828\ub41c \ub3c4\uba54\uc778\uc744 \ud655\uc778\ud558\uae30 \uc704\ud574 DNS \uc694\uccad\uc744 \ubcf4\ub0c5\ub2c8\ub2e4.<\/p>\n<\/li>\n

  3. \n

    \ub2e8\uae30\uac04 \uc815\ub2f9\ud55c \ub300\uc751<\/strong>: \ucc98\uc74c\uc5d0 DNS \uc751\ub2f5\uc5d0\ub294 \uacf5\uaca9\uc790\uc758 \uc11c\ubc84\ub97c \uac00\ub9ac\ud0a4\ub294 IP \uc8fc\uc18c\uac00 \ud3ec\ud568\ub418\uc5b4 \uc788\uc2b5\ub2c8\ub2e4. \ud558\uc9c0\ub9cc \uc774 IP \uc8fc\uc18c\ub294 \ub77c\uc6b0\ud130\ub098 \ub0b4\ubd80 \uc11c\ubc84 \ub4f1\uc758 \ud569\ubc95\uc801\uc778 IP\ub85c \ube60\ub974\uac8c \ubcc0\uacbd\ub429\ub2c8\ub2e4.<\/p>\n<\/li>\n

  4. \n

    \ub3d9\uc77c \ucd9c\ucc98 \uc815\ucc45 \uc6b0\ud68c<\/strong>: DNS \uc751\ub2f5\uc758 \uc9e7\uc740 TTL(Time-To-Live)\ub85c \uc778\ud574 \ud53c\ud574\uc790\uc758 \ube0c\ub77c\uc6b0\uc800\ub294 \uc545\uc131 \ucd9c\ucc98\uc640 \ud569\ubc95\uc801\uc778 \ucd9c\ucc98\ub97c \ub3d9\uc77c\ud558\uac8c \uac04\uc8fc\ud569\ub2c8\ub2e4.<\/p>\n<\/li>\n

  5. \n

    \ucc29\ucde8<\/strong>: \uacf5\uaca9\uc790\uc758 JavaScript \ucf54\ub4dc\ub294 \uc774\uc81c \ud569\ubc95\uc801\uc778 \ub3c4\uba54\uc778\uc5d0 \uad50\ucc28 \ucd9c\ucc98 \uc694\uccad\uc744 \ud558\uc5ec \ud574\ub2f9 \ub3c4\uba54\uc778\uc5d0\uc11c \uc561\uc138\uc2a4\ud560 \uc218 \uc788\ub294 \uc7a5\uce58 \ubc0f \uc11c\ube44\uc2a4\uc758 \ucde8\uc57d\uc810\uc744 \uc545\uc6a9\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n<\/li>\n<\/ol>\n

    DNS \ub9ac\ubc14\uc778\ub529 \uacf5\uaca9\uc758 \ub0b4\ubd80 \uad6c\uc870. DNS \ub9ac\ubc14\uc778\ub529 \uacf5\uaca9\uc758 \uc791\ub3d9 \ubc29\uc2dd<\/h2>\n

    DNS \ub9ac\ubc14\uc778\ub529 \uacf5\uaca9\uc758 \ub0b4\ubd80 \uad6c\uc870\ub97c \uc774\ud574\ud558\ub824\uba74 \uad00\ub828\ub41c \ub2e4\uc591\ud55c \uad6c\uc131 \uc694\uc18c\ub97c \uc870\uc0ac\ud558\ub294 \uac83\uc774 \uc911\uc694\ud569\ub2c8\ub2e4.<\/p>\n

      \n
    1. \n

      \uc545\uc131 \uc6f9\uc0ac\uc774\ud2b8<\/strong>: \uacf5\uaca9\uc790\ub294 \uc545\uc131 \uc790\ubc14\uc2a4\ud06c\ub9bd\ud2b8 \ucf54\ub4dc\uac00 \ud3ec\ud568\ub41c \uc6f9\uc0ac\uc774\ud2b8\ub97c \ud638\uc2a4\ud305\ud569\ub2c8\ub2e4.<\/p>\n<\/li>\n

    2. \n

      DNS \uc11c\ubc84<\/strong>: \uacf5\uaca9\uc790\ub294 \uc545\uc131 \ub3c4\uba54\uc778\uc5d0 \ub300\ud55c DNS \ucffc\ub9ac\uc5d0 \uc751\ub2f5\ud558\ub294 DNS \uc11c\ubc84\ub97c \uc81c\uc5b4\ud569\ub2c8\ub2e4.<\/p>\n<\/li>\n

    3. \n

      TTL \uc870\uc791<\/strong>: DNS \uc11c\ubc84\ub294 \ucc98\uc74c\uc5d0 \uc9e7\uc740 TTL \uac12\uc73c\ub85c \uc751\ub2f5\ud558\ubbc0\ub85c \ud53c\ud574\uc790\uc758 \ube0c\ub77c\uc6b0\uc800\uac00 \uc9e7\uc740 \uae30\uac04 \ub3d9\uc548 DNS \uc751\ub2f5\uc744 \uce90\uc2dc\ud558\uac8c \ub429\ub2c8\ub2e4.<\/p>\n<\/li>\n

    4. \n

      \ud569\ubc95\uc801\uc778 \ud45c\uc801<\/strong>: \uacf5\uaca9\uc790\uc758 DNS \uc11c\ubc84\ub294 \ub098\uc911\uc5d0 \ud569\ubc95\uc801\uc778 \ub300\uc0c1(\uc608: \ub0b4\ubd80 \ub124\ud2b8\uc6cc\ud06c \ub9ac\uc18c\uc2a4)\uc744 \uac00\ub9ac\ud0a4\ub294 \ub2e4\ub978 IP \uc8fc\uc18c\ub85c \uc751\ub2f5\ud569\ub2c8\ub2e4.<\/p>\n<\/li>\n

    5. \n

      \ub3d9\uc77c \ucd9c\ucc98 \uc815\ucc45 \uc6b0\ud68c<\/strong>: \uc9e7\uc740 TTL\ub85c \uc778\ud574 \ud53c\ud574\uc790\uc758 \ube0c\ub77c\uc6b0\uc800\ub294 \uc545\uc131 \ub3c4\uba54\uc778\uacfc \ud569\ubc95\uc801\uc778 \ub300\uc0c1\uc744 \ub3d9\uc77c\ud55c \ucd9c\ucc98\ub85c \uac04\uc8fc\ud558\uc5ec Cross-Origin \uc694\uccad\uc744 \uac00\ub2a5\ud558\uac8c \ud569\ub2c8\ub2e4.<\/p>\n<\/li>\n<\/ol>\n

      DNS \ub9ac\ubc14\uc778\ub529 \uacf5\uaca9\uc758 \uc8fc\uc694 \ud2b9\uc9d5 \ubd84\uc11d<\/h2>\n

      DNS \ub9ac\ubc14\uc778\ub529 \uacf5\uaca9\uc740 \uc774\ub97c \uac15\ub825\ud55c \uc704\ud611\uc73c\ub85c \ub9cc\ub4dc\ub294 \uba87 \uac00\uc9c0 \uc8fc\uc694 \uae30\ub2a5\uc744 \ub098\ud0c0\ub0c5\ub2c8\ub2e4.<\/p>\n

        \n
      1. \n

        \uc740\ubc00\ud568<\/strong>: \uacf5\uaca9\uc740 \ud53c\ud574\uc790\uc758 \ube0c\ub77c\uc6b0\uc800\uc640 DNS \uc778\ud504\ub77c\ub97c \ud65c\uc6a9\ud558\uae30 \ub54c\ubb38\uc5d0 \uae30\uc874 \ub124\ud2b8\uc6cc\ud06c \ubcf4\uc548 \uc870\uce58\ub97c \ud68c\ud53c\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n<\/li>\n

      2. \n

        \uad50\ucc28 \ucd9c\ucc98 \uc545\uc6a9<\/strong>: \uacf5\uaca9\uc790\uac00 SOP\ub97c \uc6b0\ud68c\ud558\uc5ec \uc6f9\uc5d0\uc11c \uc561\uc138\uc2a4\ud560 \uc218 \uc5c6\ub294 \ub124\ud2b8\uc6cc\ud06c \uc7a5\uce58 \ub610\ub294 \uc11c\ube44\uc2a4\uc640 \uc0c1\ud638 \uc791\uc6a9\ud560 \uc218 \uc788\ub3c4\ub85d \ud569\ub2c8\ub2e4.<\/p>\n<\/li>\n

      3. \n

        \uc9e7\uc740 \uc2dc\uac04 \ucc3d<\/strong>: \uacf5\uaca9\uc740 \uc9e7\uc740 TTL \uac12\uc744 \uc0ac\uc6a9\ud558\uc5ec \uc545\uc131 IP \uc8fc\uc18c\uc640 \ud569\ubc95\uc801\uc778 IP \uc8fc\uc18c \uc0ac\uc774\ub97c \ube60\ub974\uac8c \uc804\ud658\ud558\ubbc0\ub85c \ud0d0\uc9c0 \ubc0f \uc644\ud654\uac00 \uc5b4\ub835\uc2b5\ub2c8\ub2e4.<\/p>\n<\/li>\n

      4. \n

        \uc7a5\uce58 \uc545\uc6a9<\/strong>: DNS \ub9ac\ubc14\uc778\ub529\uc740 \ubcf4\uc548 \ucde8\uc57d\uc131\uc774 \uc788\uc744 \uc218 \uc788\ub294 IoT \uc7a5\uce58 \ubc0f \ub124\ud2b8\uc6cc\ud06c \uc7a5\ube44\ub97c \ud45c\uc801\uc73c\ub85c \uc0bc\uc544 \uc7a0\uc7ac\uc801\uc778 \uacf5\uaca9 \ubca1\ud130\ub85c \uc804\ud658\ud558\ub294 \uacbd\uc6b0\uac00 \ub9ce\uc2b5\ub2c8\ub2e4.<\/p>\n<\/li>\n

      5. \n

        \uc0ac\uc6a9\uc790 \ucee8\ud14d\uc2a4\ud2b8<\/strong>: \uacf5\uaca9\uc740 \ud53c\ud574\uc790\uc758 \ube0c\ub77c\uc6b0\uc800 \ucee8\ud14d\uc2a4\ud2b8\uc5d0\uc11c \ubc1c\uc0dd\ud558\ubbc0\ub85c \uc7a0\uc7ac\uc801\uc73c\ub85c \ubbfc\uac10\ud55c \uc815\ubcf4\ub098 \uc778\uc99d\ub41c \uc138\uc158\uc5d0 \ub300\ud55c \uc561\uc138\uc2a4\uac00 \ud5c8\uc6a9\ub429\ub2c8\ub2e4.<\/p>\n<\/li>\n<\/ol>\n

        DNS \ub9ac\ubc14\uc778\ub529 \uacf5\uaca9 \uc720\ud615<\/h2>\n

        DNS \ub9ac\ubc14\uc778\ub529 \uacf5\uaca9 \uae30\uc220\uc5d0\ub294 \ub2e4\uc591\ud55c \ubcc0\ud615\uc774 \uc788\uc73c\uba70 \uac01\uac01 \ud2b9\uc815 \ud2b9\uc131\uacfc \ubaa9\ud45c\ub97c \uac00\uc9c0\uace0 \uc788\uc2b5\ub2c8\ub2e4. \ub2e4\uc74c\uc740 \uba87 \uac00\uc9c0 \uc77c\ubc18\uc801\uc778 \uc720\ud615\uc785\ub2c8\ub2e4.<\/p>\n\n\n\n\n\n\n\n\n
        \uc720\ud615<\/th>\n\uc124\uba85<\/th>\n<\/tr>\n<\/thead>\n
        \ud074\ub798\uc2dd DNS \ub9ac\ubc14\uc778\ub529<\/strong><\/td>\n\uacf5\uaca9\uc790\uc758 \uc11c\ubc84\ub294 \ub2e4\uc591\ud55c \ub0b4\ubd80 \ub9ac\uc18c\uc2a4\uc5d0 \uc811\uadfc\ud558\uae30 \uc704\ud574 DNS \uc751\ub2f5\uc744 \uc5ec\ub7ec \ubc88 \ubcc0\uacbd\ud569\ub2c8\ub2e4.<\/td>\n<\/tr>\n
        \ub2e8\uc77c A \ub808\ucf54\ub4dc \ub9ac\ubc14\uc778\ub529<\/strong><\/td>\nDNS \uc751\ub2f5\uc5d0\ub294 \ub300\uc0c1\uc758 \ub0b4\ubd80 IP\ub85c \ube60\ub974\uac8c \uc804\ud658\ub418\ub294 IP \uc8fc\uc18c\uac00 \ud558\ub098\ub9cc \ud3ec\ud568\ub429\ub2c8\ub2e4.<\/td>\n<\/tr>\n
        \uac00\uc0c1 \ud638\uc2a4\ud2b8 \ub9ac\ubc14\uc778\ub529<\/strong><\/td>\n\uc774 \uacf5\uaca9\uc740 \ub2e8\uc77c IP \uc8fc\uc18c\uc758 \uac00\uc0c1 \ud638\uc2a4\ud2b8\ub97c \uc774\uc6a9\ud558\uc5ec \ub3d9\uc77c\ud55c \uc11c\ubc84\uc758 \ub2e4\uc591\ud55c \uc11c\ube44\uc2a4\ub97c \ud45c\uc801\uc73c\ub85c \uc0bc\uc2b5\ub2c8\ub2e4.<\/td>\n<\/tr>\n
        \uc2dc\uac04 \uae30\ubc18 \ub9ac\ubc14\uc778\ub529<\/strong><\/td>\nDNS \uc751\ub2f5\uc740 \ud2b9\uc815 \uac04\uaca9\uc73c\ub85c \ubcc0\uacbd\ub418\ubbc0\ub85c \uc2dc\uac04\uc774 \uc9c0\ub0a8\uc5d0 \ub530\ub77c \ub2e4\uc591\ud55c \uc11c\ube44\uc2a4\uc5d0 \uc561\uc138\uc2a4\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

        DNS \ub9ac\ubc14\uc778\ub529 \uacf5\uaca9\uc758 \ud65c\uc6a9\ubc29\ubc95\uacfc \ubb38\uc81c\uc810 \ubc0f \ud65c\uc6a9\uc5d0 \ub530\ub978 \ud574\uacb0\ubc29\uc548<\/h2>\n

        DNS \ub9ac\ubc14\uc778\ub529 \uacf5\uaca9\uc740 \uc2ec\uac01\ud55c \ubcf4\uc548 \ubb38\uc81c\ub97c \uc57c\uae30\ud558\uba70 \uc7a0\uc7ac\uc801\uc778 \uc6a9\ub3c4\ub294 \ub2e4\uc74c\uacfc \uac19\uc2b5\ub2c8\ub2e4.<\/p>\n

          \n
        1. \n

          \uc2b9\uc778\ub418\uc9c0 \uc54a\uc740 \uc811\uadfc<\/strong>: \uacf5\uaca9\uc790\uac00 \ub0b4\ubd80 \ub124\ud2b8\uc6cc\ud06c \uc7a5\uce58\uc5d0 \uc811\uadfc\ud558\uace0 \uc870\uc791\ud558\uc5ec \ub370\uc774\ud130 \uc720\ucd9c\uc774\ub098 \ubb34\ub2e8 \uc81c\uc5b4\uac00 \uac00\ub2a5\ud569\ub2c8\ub2e4.<\/p>\n<\/li>\n

        2. \n

          \uad8c\ud55c \uc2b9\uaca9<\/strong>: \ub0b4\ubd80 \uc11c\ube44\uc2a4\uc5d0 \uc0c1\uc2b9\ub41c \uad8c\ud55c\uc774 \uc788\ub294 \uacbd\uc6b0 \uacf5\uaca9\uc790\ub294 \uc774\ub97c \uc545\uc6a9\ud558\uc5ec \ub354 \ub192\uc740 \uc561\uc138\uc2a4 \uad8c\ud55c\uc744 \uc5bb\uc744 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n<\/li>\n

        3. \n

          \ubd07\ub137 \ubaa8\uc9d1<\/strong>: DNS \ub9ac\ubc14\uc778\ub529\uc744 \ud1b5\ud574 \uc190\uc0c1\ub41c IoT \uc7a5\uce58\ub294 \ucd94\uac00 \uc545\uc131 \ud65c\ub3d9\uc744 \uc704\ud574 \ubd07\ub137\uc5d0 \uc720\uc778\ub420 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n<\/li>\n<\/ol>\n

          DNS \ub9ac\ubc14\uc778\ub529\uacfc \uad00\ub828\ub41c \ubb38\uc81c\ub97c \ud574\uacb0\ud558\uae30 \uc704\ud574 \ub2e4\uc74c\uacfc \uac19\uc740 \ub2e4\uc591\ud55c \uc194\ub8e8\uc158\uc774 \uc81c\uc548\ub418\uc5c8\uc2b5\ub2c8\ub2e4.<\/p>\n

            \n
          1. \n

            DNS \uc751\ub2f5 \uac80\uc99d<\/strong>: DNS \ud655\uc778\uc790\uc640 \ud074\ub77c\uc774\uc5b8\ud2b8\ub294 DNS \uc751\ub2f5\uc774 \ud569\ubc95\uc801\uc774\uace0 \ubcc0\uc870\ub418\uc9c0 \uc54a\uc558\ub294\uc9c0 \ud655\uc778\ud558\uae30 \uc704\ud574 \uc751\ub2f5 \uc720\ud6a8\uc131 \uac80\uc0ac \uae30\uc220\uc744 \uad6c\ud604\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n<\/li>\n

          2. \n

            \ud655\uc7a5\ub41c \ub3d9\uc77c \ucd9c\ucc98 \uc815\ucc45<\/strong>: \ube0c\ub77c\uc6b0\uc800\ub294 \ub450 \ucd9c\ucc98\uac00 \ub3d9\uc77c\ud55c\uc9c0 \ud655\uc778\ud558\uae30 \uc704\ud574 IP \uc8fc\uc18c \uc774\uc678\uc758 \ucd94\uac00 \uc694\uc18c\ub97c \uace0\ub824\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n<\/li>\n

          3. \n

            \ub124\ud2b8\uc6cc\ud06c \ubd84\ud560<\/strong>: \ub124\ud2b8\uc6cc\ud06c\ub97c \uc801\uc808\ud558\uac8c \ubd84\ud560\ud558\uba74 \ub0b4\ubd80 \uc7a5\uce58 \ubc0f \uc11c\ube44\uc2a4\uac00 \uc678\ubd80 \uacf5\uaca9\uc5d0 \ub178\ucd9c\ub418\ub294 \uac83\uc744 \uc81c\ud55c\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n<\/li>\n<\/ol>\n

            \uc8fc\uc694 \ud2b9\uc9d5 \ubc0f \uae30\ud0c0 \uc720\uc0ac\ud55c \uc6a9\uc5b4\uc640\uc758 \ube44\uad50\ub97c \ud45c\uc640 \ubaa9\ub85d \ud615\ud0dc\ub85c \uc81c\uacf5<\/h2>\n\n\n\n\n\n\n\n\n\n
            \ud2b9\uc131<\/th>\nDNS \ub9ac\ubc14\uc778\ub529 \uacf5\uaca9<\/th>\nXSS(\uad50\ucc28 \uc0ac\uc774\ud2b8 \uc2a4\ud06c\ub9bd\ud305)<\/th>\n<\/tr>\n<\/thead>\n
            \ud45c\uc801<\/strong><\/td>\n\ub124\ud2b8\uc6cc\ud06c\ub85c \uc5f0\uacb0\ub41c \uc7a5\uce58 \ubc0f \uc11c\ube44\uc2a4<\/td>\n\uc6f9 \uc560\ud50c\ub9ac\ucf00\uc774\uc158 \ubc0f \uc0ac\uc6a9\uc790<\/td>\n<\/tr>\n
            \uc545\uc6a9<\/strong><\/td>\n\ub3d9\uc77c \ucd9c\ucc98 \uc815\ucc45 \uc6b0\ud68c<\/td>\n\ucf54\ub4dc \uc8fc\uc785 \ubc0f \uc138\uc158 \ud558\uc774\uc7ac\ud0b9<\/td>\n<\/tr>\n
            \uae30\uc6d0<\/strong><\/td>\nDNS \uc870\uc791\uacfc \uad00\ub828\ub428<\/td>\n\uc6f9 \ud398\uc774\uc9c0\uc5d0 \ub300\ud55c \uc9c1\uc811 \uacf5\uaca9<\/td>\n<\/tr>\n
            \uc601\ud5a5<\/strong><\/td>\n\ubb34\ub2e8 \uc811\uadfc \ubc0f \ud1b5\uc81c<\/td>\n\ub370\uc774\ud130 \ub3c4\ub09c \ubc0f \uc870\uc791<\/td>\n<\/tr>\n
            \ubc29\uc9c0<\/strong><\/td>\nDNS \uc751\ub2f5 \uac80\uc99d<\/td>\n\uc785\ub825 \uc0ad\uc81c \ubc0f \ucd9c\ub825 \uc778\ucf54\ub529<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

            DNS \ub9ac\ubc14\uc778\ub529 \uacf5\uaca9\uc5d0 \ub300\ud55c \ubbf8\ub798 \uc804\ub9dd\uacfc \uae30\uc220<\/h2>\n

            \uc778\ud130\ub137\uacfc IoT \uc0dd\ud0dc\uacc4\uac00 \uacc4\uc18d \ubc1c\uc804\ud568\uc5d0 \ub530\ub77c DNS \ub9ac\ubc14\uc778\ub529 \uacf5\uaca9\uc758 \uc704\ud611\ub3c4 \uacc4\uc18d\ud574\uc11c \uc9c4\ud654\ud560 \uac83\uc785\ub2c8\ub2e4. \ubbf8\ub798\uc5d0\ub294 \ub2e4\uc74c\uc744 \uae30\ub300\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n

              \n
            1. \n

              \uace0\uae09 \ud68c\ud53c \uae30\uc220<\/strong>: \uacf5\uaca9\uc790\ub294 \ud0d0\uc9c0 \ubc0f \uc644\ud654\ub97c \ud68c\ud53c\ud558\uae30 \uc704\ud574 \ubcf4\ub2e4 \uc815\uad50\ud55c \ubc29\ubc95\uc744 \uac1c\ubc1c\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n<\/li>\n

            2. \n

              \ud5a5\uc0c1\ub41c DNS \ubcf4\uc548<\/strong>: DNS \uc778\ud504\ub77c\uc640 \ud504\ub85c\ud1a0\ucf5c\uc740 \uc774\ub7ec\ud55c \uacf5\uaca9\uc5d0 \ub300\ud574 \ub354 \uac15\ub825\ud55c \ubcf4\uc548 \uba54\ucee4\ub2c8\uc998\uc744 \uc81c\uacf5\ud558\uae30 \uc704\ud574 \ubc1c\uc804\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n<\/li>\n

            3. \n

              AI \uae30\ubc18 \uad6d\ubc29<\/strong>: \uc778\uacf5\uc9c0\ub2a5\uacfc \uba38\uc2e0\ub7ec\ub2dd\uc740 DNS \ub9ac\ubc14\uc778\ub529 \uacf5\uaca9\uc744 \uc2e4\uc2dc\uac04\uc73c\ub85c \uc2dd\ubcc4\ud558\uace0 \ucc28\ub2e8\ud558\ub294 \ub370 \uc911\uc694\ud55c \uc5ed\ud560\uc744 \ud560 \uac83\uc785\ub2c8\ub2e4.<\/p>\n<\/li>\n<\/ol>\n

              \ud504\ub85d\uc2dc \uc11c\ubc84\ub97c \uc0ac\uc6a9\ud558\uac70\ub098 DNS \ub9ac\ubc14\uc778\ub529 \uacf5\uaca9\uacfc \uc5f0\uad00\uc2dc\ud0a4\ub294 \ubc29\ubc95<\/h2>\n

              \ud504\ub85d\uc2dc \uc11c\ubc84\ub294 DNS \ub9ac\ubc14\uc778\ub529 \uacf5\uaca9\uacfc \uad00\ub828\ud558\uc5ec \uc774\uc911 \uc5ed\ud560\uc744 \ud569\ub2c8\ub2e4. \uadf8\ub4e4\uc740 \uc7a0\uc7ac\uc801\uc778 \ud45c\uc801\uc774 \ub420 \uc218\ub3c4 \uc788\uace0 \uadc0\uc911\ud55c \ubc29\uc5b4\uc790\uac00 \ub420 \uc218\ub3c4 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n

                \n
              1. \n

                \ud45c\uc801<\/strong>: \ud504\ub85d\uc2dc \uc11c\ubc84\uac00 \uc798\ubabb \uad6c\uc131\ub418\uc5c8\uac70\ub098 \ucde8\uc57d\uc810\uc774 \uc788\ub294 \uacbd\uc6b0 \uacf5\uaca9\uc790\uac00 \ub0b4\ubd80 \ub124\ud2b8\uc6cc\ud06c\uc5d0 \ub300\ud574 DNS \ub9ac\ubc14\uc778\ub529 \uacf5\uaca9\uc744 \uc2dc\uc791\ud558\ub294 \uc9c4\uc785\uc810\uc774 \ub420 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n<\/li>\n

              2. \n

                \ubc29\uc5b4\uc790<\/strong>: \ubc18\uba74, \ud504\ub85d\uc2dc \uc11c\ubc84\ub294 \ud074\ub77c\uc774\uc5b8\ud2b8\uc640 \uc678\ubd80 \ub9ac\uc18c\uc2a4 \uac04\uc758 \uc911\uac1c\uc790 \uc5ed\ud560\uc744 \ud560 \uc218 \uc788\uc5b4 \uc545\uc758\uc801\uc778 DNS \uc751\ub2f5\uc744 \ud0d0\uc9c0\ud558\uace0 \ubc29\uc9c0\ud558\ub294 \ub370 \ub3c4\uc6c0\uc774 \ub420 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n<\/li>\n<\/ol>\n

                OneProxy\uc640 \uac19\uc740 \ud504\ub85d\uc2dc \uc11c\ubc84 \uc81c\uacf5\uc5c5\uccb4\uac00 DNS \ub9ac\ubc14\uc778\ub529 \uacf5\uaca9\uc73c\ub85c\ubd80\ud130 \uc2dc\uc2a4\ud15c\uc744 \ubcf4\ud638\ud558\ub824\uba74 \uc2dc\uc2a4\ud15c\uc744 \uc9c0\uc18d\uc801\uc73c\ub85c \ubaa8\ub2c8\ud130\ub9c1\ud558\uace0 \uc5c5\ub370\uc774\ud2b8\ud558\ub294 \uac83\uc774 \uc911\uc694\ud569\ub2c8\ub2e4.<\/p>\n

                \uad00\ub828\ub41c \ub9c1\ud06c\ub4e4<\/h2>\n

                DNS \ub9ac\ubc14\uc778\ub529 \uacf5\uaca9\uc5d0 \ub300\ud55c \uc790\uc138\ud55c \ub0b4\uc6a9\uc744 \ubcf4\ub824\uba74 \ub2e4\uc74c \ub9ac\uc18c\uc2a4\ub97c \ud0d0\uc0c9\ud558\uc138\uc694.<\/p>\n

                  \n
                1. Dan Kaminsky\uc758 DNS \ub9ac\ubc14\uc778\ub529<\/a><\/li>\n
                2. Stanford University\uc758 DNS \ub9ac\ubc14\uc778\ub529 \uc774\ud574<\/a><\/li>\n
                3. \ube0c\ub77c\uc6b0\uc800 RASP\ub97c \uc0ac\uc6a9\ud558\uc5ec DNS \ub9ac\ubc14\uc778\ub529 \uac10\uc9c0<\/a><\/li>\n<\/ol>\n

                  DNS \ub9ac\ubc14\uc778\ub529 \ubc0f \uae30\ud0c0 \uc0c8\ub85c\uc6b4 \uc704\ud611\uc73c\ub85c\ubd80\ud130 \ubcf4\ud638\ud558\ub824\uba74 \ucd5c\uc2e0 \uacf5\uaca9 \uae30\uc220\uc5d0 \ub300\ud55c \uc815\ubcf4\ub97c \uc5bb\uace0 \ucd5c\uc0c1\uc758 \ubcf4\uc548 \uad00\ud589\uc744 \ucc44\ud0dd\ud558\ub294 \uac83\uc774 \ud544\uc218\uc801\uc785\ub2c8\ub2e4.<\/p>","protected":false},"featured_media":476922,"menu_order":0,"template":"","meta":{"_acf_changed":false,"content-type":"","inline_featured_image":false,"footnotes":""},"class_list":["post-476921","wiki","type-wiki","status-publish","has-post-thumbnail","hentry"],"acf":{"faq_title":"Frequently Asked Questions about DNS Rebinding Attack: An In-Depth Exploration<\/mark>","faq_items":[{"question":"What is DNS rebinding attack?","answer":"

                  DNS rebinding attack is a sophisticated method used by malicious actors to exploit web browsers and their security mechanisms. It leverages the inherent trust in DNS (Domain Name System) to bypass the Same-Origin Policy (SOP) enforced by web browsers. This attack can be used to target users visiting websites that interact with network services, such as routers, cameras, printers, or even internal corporate systems. By manipulating DNS responses, attackers can gain unauthorized access to sensitive information, execute arbitrary code, or carry out other malicious actions.<\/p>"},{"question":"How did DNS rebinding attack originate?","answer":"

                  The concept of DNS rebinding was first introduced by Daniel B. Jackson in his Master's thesis in 2005. However, it gained significant attention after Jeremiah Grossman's blog post in 2007, describing practical implementations to exploit web browsers and devices behind a victim's firewall.<\/p>"},{"question":"How does DNS rebinding attack work?","answer":"

                  DNS rebinding attack involves a multi-step process where attackers trick victims' web browsers into making unintended requests to arbitrary domains. The attack generally follows these steps:<\/p>

                  1. Initial Access: The victim visits a malicious website or clicks on a malicious link.<\/li>
                  2. Domain Resolution: The victim's browser sends a DNS request to resolve the domain associated with the malicious website.<\/li>
                  3. Short-lived Legitimate Response: The DNS response contains an IP address pointing to the attacker's server initially but quickly changes to a legitimate IP, such as that of a router or an internal server.<\/li>
                  4. Same-Origin Policy Bypass: Due to the short TTL of the DNS response, the victim's browser considers the malicious origin and the legitimate origin as the same.<\/li>
                  5. Exploitation: The attacker's JavaScript code can now make cross-origin requests to the legitimate domain, exploiting vulnerabilities in devices and services accessible from that domain.<\/li><\/ol>"},{"question":"What are the key features of DNS rebinding attack?","answer":"

                    DNS rebinding attack exhibits several key features that make it a potent threat:<\/p>

                    1. Stealthiness: It can evade traditional network security measures by leveraging the victim's browser and the DNS infrastructure.<\/li>
                    2. Cross-Origin Exploitation: Attackers can bypass SOP, enabling them to interact with networked devices or services that should be inaccessible from the web.<\/li>
                    3. Short Time Window: The attack relies on the short TTL value to quickly switch between the malicious and legitimate IP addresses, making detection and mitigation challenging.<\/li>
                    4. Device Exploitation: DNS rebinding often targets IoT devices and networked equipment that may have security vulnerabilities, turning them into potential attack vectors.<\/li>
                    5. User Context: The attack occurs in the context of the victim's browser, potentially allowing access to sensitive information or authenticated sessions.<\/li><\/ol>"},{"question":"What types of DNS rebinding attack exist?","answer":"

                      There are different variations of DNS rebinding attack techniques, each with specific characteristics and goals. Some common types include:<\/p>