Dynamic DNS Leakage Tester

Phase 1: Dynamic DNS Server check

Our checker first checks to see if the SOA record is properly configured.

Event	Reason

Warning - Dynamic DNS server misconfigured

Phase 2: Risk for Dynamic DNS hijack check

If the SOA record is misconfigured, our checker continues the assessment by simulating the Microsoft algorithm behavior and querying the SOA server for its own name. The checker tries to estimate your risk of exposure to the vulnerability.

Event	Reason

Dynamic DNS exploit risk

Your nameservers replied with an unknown IP to the Dynamic DNS request. Please validate this IP is owned by you, as this may be a sign for an exploitation of this vulnerability. Review the list and if it contains any IP addresses that are not identified with your organization or your DNS provider, it may belong to a malicious actor that exploited your DNS-as-a- Service provider. In this case Dynamic DNS traffic may leak to the malicious actor.

Phase 2: Risk for Dynamic DNS hijack check

If the SOA record is misconfigured, our checker continues the assessment by simulating the Microsoft algorithm behavior and querying the SOA server for its own name. The checker tries to estimate your risk of exposure to the vulnerability.

Event

Dynamic DNS Leakage Tester

Warning - Dynamic DNS server misconfigured

Everything is great

Dynamic DNS exploit risk

No Risk for exploitation