METHOD AND APPARATUS FOR DETECTING DOMAIN NAME TAKEOVER VULNERABILITY

The present invention relates to the technical field of the Internet, and provides a method and apparatus for detecting a domain name takeover vulnerability. The method comprises: querying a recursive resolution server for a DNS A record of a target domain name; obtaining a DNS response message, and when checking that a DNS response status code thereof is SERVFAIL, querying NS servers for the DNS A record of the target domain name; and querying an NS_1 server for a DNS NS record of DOMAIN_1, comparing the obtained DNS NS record with NS_1, and if same do not match, affirming that there is a domain name takeover vulnerability. In the present invention, by means of respective data maintenance characteristics of a current-level NS server and an upper-level NS server thereof, the problem of the presence of a domain name takeover vulnerability is analyzed when the resolution of the DNS A record of the target domain name fails. La présente invention, qui relève du domaine technique de l'internet, concerne un procédé