How to Shut Down the Entire Internet?

NOTE: Following information is result of my personal research, DO NOT TRY to perform actions mentioned in this article!

A lot of people was asking about crashing Internet and some “smart tech guys” always saying; It’s impossible. It’s better to ask hackers. 🙂

Last few weeks I was doing research on DNS servers. You probably know that DNS servers are here to resolve domain’s IP because computers are communicating using IP addresses, not domains.

dns-and-ipv6

DNS Client can be your computer and once you type “google.com” in your web browser you basically ask DNS Server “Hey, please give me direction for facebook.com, I need to know where to go”.

Now evil minds can think about DNS spoofing (for example: facebook.com > 192.168.1.1) – people will still see facebook.com in their link bar, but thats another story.

In this article I want to show you how easy it is to take down Internet (or maybe just part of it). All you need is strong DDoS power. People think that DDoS attacks are done by script kiddies, but DDoS can be really serious threat.

Screenshot_5
World map with locations of root DNS Servers

So, Internet have 13 root DNS servers.

A	198.41.0.4
B	192.228.79.201
C	192.33.4.12
D	128.8.10.90
E	192.203.230.10
F	192.5.5.241
G	192.112.36.4
H	128.63.2.53
I	192.36.148.17
J	192.58.128.30
K	193.0.14.129
L	199.7.83.42
M	202.12.27.33

they also have (sub)domains:
a.root-servers.net

b.root-servers.net

1024px-Ams-ix.k.root-servers.net
(k.root-servers.net)

If you take down all of them down, no one will be able to perform DNS lookup. Once you enter google.com you will see something like this:

12822220_1513863075588566_1164263847_n

Most people will think internet connection is down, which is, close enough. You will still be able to access the web by IP addresses, but most of servers will redirect you to domain name and you got into loop that breaks once there’s no response from DNS server.

Almost every ISP have It’s own DNS Server and they use DNS caching, they have low cache expire time and thats bad failover solution for them. 🙂

ISP’s DNS servers are very easy to shut down and that will result in no internet connection for all ISP users. You can get your ISP’s Primary and Secondary DNS servers on your router’s web interface. There’s a lot of vulnerable router and every ISP have at least one user with vulnerable router and default login credentials.

Share if you want to see more interesting things about Internet.

Contact the author: [email protected]

0 Comments

Leave a Comment

Login

Welcome! Login in to your account

Remember me Lost your password?

Don't have account. Register

Lost Password

Register