DNS Tunneling is a well known technique, and various free tools are available to play with it. However, its full power has not been fully unleashed yet: several of the existing tools are mostly targeted to read email for free from an airport lounge and not to be used as a deadly post-exploitation weapon. Also, they all suffer from the fact that a DNS tunnel is painfully slow and quite easy to detect and locate. In this talk we will introduce a few new tricks that will allow us to: * Improve the tunnel speed, by leveraging the fact that RFCs allow a lot of flexibility when crafting DNS packets. * Make the DNS tunnel a lot harder to detect, by spoofing the source IP address of the queries, therefore spreading the traffic signature among all the hosts of the subnet. Of course there will be a demo, in which we will introduce a first version of Heyoka, a brand new tool implementing these ideas.