Proof-of-Concept of the RUC Attack | Windows Server Virtual Machine with Microsoft DNSSEC-validating Resolver

This is a part of the artifacts for the Proof-of-Concept of the RUC attack, paper #1066: "Your Shield is My Sword: A Persistent Denial-of-Service Attack via the Reuse of Unvalidated Caches in DNSSEC Validation" accepted by USENIX Security '25, Cycle 2.

 

We provide a .ova file for a ready-made Windows Server virtual machine with Microsoft DNS service installed and DNSSEC enabled. This file can be imported into virtual machine tools such as VMware Workstation or VirtualBox. You can log in to the server as `Administrator` with password `RUC@Sec25`.

 

⚠️ To reproduce the RUC attack since 2026, please refer to the latest version of this artifact. See also https://github.com/NASP-THU/RUC_PoC.