Alexandre Dulaunoy

Recently I was digging in the outliers of DNS resolving from the certificate transparency and there is a hostname which is often hardcoded test.microsoftpki.net but which is giving a NXDOMAIN. Checking the Passive DNS, the domain itself exists and seems to be registered on Microsoft infrastructure

Any clue of the software or service at Microsoft generating certificate with an invalid domain for testing?

#passivedns #dns #certificatetransparency

Dec 30, 2023 at 9:22amWeb