Tuesday, October 26, 2021
 Brave Browser Leaked DNS Queries for Onion Services

Brave, a browser that allows users to access onion services, had a bug that sent queries for onion addresses to public DNS resolvers.

Brave is a browser that advertises itself as a privacy-oriented browser with built-in support for blocking advertisements, disabling javascript, blocking cookies, and similar tasks. One of the more recent additions to the browser is a feature called “Private Window with Tor.”

In this case, the browser’s adblocking capabilities–which, in and of themselves, are not anymore useful than an adblocker or PiHole–are at the core of the DNS leaks. TheHackerNews.com aptly described the DNS leak issue within the scope of the browser’s ad-blocking features:

This issue stems from the browser’s CNAME ad-blocking feature that blocks third-party tracking scripts that use CNAME DNS records to impersonate the first-party script when it is not and avoid detection by content blockers. In doing so, a website can cloak third-party scripts using sub-domains of the main domain, which are then redirected automatically to a tracking domain.

This feature of the browser is–or was–immediately noticeable by anyone using a local DNS sinkhole or checking DNS query logs. And for those running their server and the unpatched version of Brave browser, testing the bug is easy.

brave1
 

Tail your DNS query logs (or temporarily enable logging) and then, using Brave browser, right-click a link and “Open link in Private Window with Tor.” Your DNS server should pick up a query for an onion service.

brave2
 

A report on the bug bounty platform HackerOne highlighted this issue on January 13, 2020. A nightly release of the browser reportedly included a patch for the bug. Brave had scheduled an update to the browser that included a patch for the DNS leak in Brave 1.21.x but only released an update to the public version of Brave after the public disclosure of the bug.

Of course, nobody should be using Brave browser to access onion services. A certain organization ships its browser that interfaces with onion services. The Tor Browser is a clunky FireFox-based browser that, by default, limits the browser’s ability to thwart your attempts to browse onion services privately. The Tor Browser has had flaws in the past that deanonymize users but, for the most part, these issues only impacted users that allowed javascript and made no additional effort to remain anonymous.

On the topic of using Tor Browser instead of Brave for onion services

brave3
 

Security-focused markets such as Monopoly, White House Market, and others turn javascript into a non-issue by forcing users to disable javascript.

brave4
 

Others, such as Versus (which is also a security-driven market) and TorRReZ, warn users with javascript by attempting to load a couple of lines of javascript; if the javascript is blocked by the browser, the user experiences no change.

brave5
 

If it is not blocked, a style is applied to a warning banner that appears at the top of the window.

brave6
 

 

Top Dark Web Links

Dark Web Links

Top DarkNet Markets 2022

Deep Web Financial Services. This is an updated list of links onion 2021 of information and data about financial services in the deep web, Bitcoin, PayPal for bitcoins, Bitcoin mixer...

By Administrator - Oct.11

Dark Web Links

Dark Net Links 2022

TOP DARK NET MARKETS 2022   E-Cash - Higly rated vendor on the Darknet :Money transfers paypal,Western Union , Neteller etc (Recommended) Money-Team– Recommended seller for gift cards , western union cyberattacks and...

By Administrator - Oct.11

Dark Web Links

Dark Web Search Engines

How Do I Access Hidden Services? In order to access .onion websites you need to download and install the Tor browser. You can download it for any operating system using this...

By Administrator - Oct.11

Dark Web Links

Blogs,Forums,Chats

Forums. This list contains forums, imageboards, and other platforms for discussion on the darkweb including Underdir, Blackhat Chat, 8chan, and Germany in the Deepweb. The forums listed here focus on...

By Administrator - Oct.11

Dark Web Links

Safe Darknet Email Provider

Best Anonymous Email Services in 2021 .In this anonymous email piece, I’ll mention some of the best onion (and their clearnet domain versions, when available) email services which prioritize privacy...

By Administrator - Oct.11

Dark Web Links

Open Source Software

Open Source Software 1. OnionShare OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. Link: http://lldan5gahapx5k7iafb3s4ikijc4ni7gx5iywdflkba5y2ezyg6sjgyd.onion/ 2. Whonix Whonix ™...

By Administrator - Oct.11

Dark Web Links

Privacy Service

Privacy Service 1. Snopyta Snopyta runs online services based on freedom, privacy and decentralization. Link: http://cct5wy6mzgmft24xzw6zeaf55aaqmo6324gjlsghdhbiw5gdaaf4pkad.onion/ 2. RiseUp Riseup provides online communication tools for people and groups working on liberatory social change. We are a...

By Administrator - Oct.11