Another Christian just posted this article on DNS Pinning. Really interesting read. I can’t help but find these sorts of vectors really worrying, vulnerabilities that allow external parties to access internal material (i.e. Intranet) from the source of an internal user.

You combine this with some of the nifty functionality available in the AttackAPI from GNUCitizen and you have some pretty powerful tools.

How many web developers in your organisation know about this stuff?