Multi-layer OPSEC failure analysis framework - Research-grade threat modeling and signal correlation

A lightweight tool written in Go to monitor and detect potential DNS exfiltration attempts in real-time. Designed for network security analysis.

Deterministic DNS TXT tunnel detection. Composite anomaly scoring over PCAP and Zeek logs — every score is a decomposable function of six inspectable features. No ML. No black boxes. It computes. It explains.

Setting up DNS SEC Through Local Resolution Using Docker Containers - An Analysis

Zero-Trust DNS platform with a WFP kernel driver, SHA3-512 integrity enforcement, and ISO 27001 A.8.28 compliant Rust implementation.

Refuser is a CoreDNS plugin that actively blocks DNS queries matching entries in external rule files. It supports periodic hot‑reload, allowing rule updates to take effect without restarting CoreDNS.

Hardened Ubuntu 25.10 - NextDNS DoH

An advanced, security-focused network traffic analysis tool designed for system administrators, cybersecurity professionals, and network engineers. The xsukax PCAP Analyzer provides comprehensive insights into network behavior while maintaining strong privacy protections and offering advanced threat detection capabilities.

CarbolicAcid is a high‑performance CoreDNS security plugin for filtering poisoned DNS responses at the IP layer.

Detects concept and model drift in DNS traffic using ML, analyzes attack recall collapse, engages alarm for threshold drop, and compares retraining feasibility in a SOC detection environment.

Forensic triage of DNS cache poisoning in legacy hardware. Includes PCAP analysis of 839-byte unsolicited record injections, CVE-2025-40778 mapping, and remediation via hardened Unbound (DoT) on Arch Linux.

Multi-layer real-time MITM protection for Linux — blocks ARP poisoning, DNS spoofing, rogue DHCP offers, rogue access points, SSL strip, broadcast poisoning (LLMNR, mDNS, NBNS, WS-Discovery), ICMP redirect exploits, HTTPS to HTTP downgrade attacks

Network Security Toolkit - IP info, geolocation, speed test, breach check, DNS security

DNSSEC chain-of-trust validator in Python. Verifies DS, DNSKEY and RRSIG records from the root trust anchor to a target domain.

A guide and config files for turning a Raspberry Pi into a powerful ad & malware blocker. This setup uses Pi-hole + Unbound for a private, secure, and self-hosted DNS solution that keeps your browsing history away from your ISP. 🛡️

Asynchronous OSINT orchestration platform with local Vector Similarity Search (FAISS). Protocol-driven intelligence (DNS, TLS, SMTP) with zero-API reliance and automated forensic reporting.

Bulk domain email security lockdown tool that prevents email phishing and spoofing attacks by automatically configuring SPF hard fail, null MX records, and DMARC rejection policies on unused Cloudflare-managed domains.

MCP server for the Cisco Umbrella API — 93 tools across 6 scopes: investigate, reports, policies, deployments, admin, and app discovery

開源外部攻擊面管理平台，自動化資產探勘、七維度資安評級與報告產出。

Detect DNS TXT tunnels by computing clear, deterministic anomaly scores with full, inspectable explanations—no guessing or machine learning involved.