CleanDNS - A DNS based malware protection.

CleanDNS – A DNS based malware protection.

CleanDNS is a Proof of Concept Technology for protecting End Users from malware, advanced threat and other malicious content by preventing DNS malicious Request/Responses.

cleandns

Features:

+ Inline DNS Request Filter (Suricata IPS)
+ IPS Filter for IPS Filter for RansomWareTracker IP Reputation IP Reputation
+ IPS Filter for Phistank IP Reputation
+ IPS Filter for RansomWareTracker IP Reputation
+ DNSEC Recursive DNS Requests
+ DNS Dynamic Sinkhole By DShield
+ DNS Dynamic Sinkhole By Malware Domain BlockList
+ DNS Dynamic Sinkhole By MalwareDomainsLists BlockList
+ DNS Dynamic Sinkhole By NetworkSec
+ DNS Dynamic Sinkhole By OTX AlienVault
+ DNS Dynamic Sinkhole By PhishTank
+ DNS Dynamic Sinkhole By RansomWareTracker
+ DNS Dynamic Sinkhole By Shalla’s BlackList
+ DNS Dynamic Sinkhole By SquidGuard Contrib
+ DNS Dynamic Sinkhole By URLBlackList
+ DNS Dynamic Sinkhole By Zeustracker
+ DNS Dynamic Last Resort BlackHole (OPENDNS DNS Services)
+ DNS Tunneling Filtering (IOdine Proof)
+ Local Whitelist / Blacklist for Domain Sinkhole
+ Local Whitelist / Blacklist for IP Reputation

 

Components Used:

PFSense 2.3.4-Patch1
– Suricata Module
– Bind Module
– Cron Module
– Service Watchdog Module
– SNORT Community Signature + Emerging Threats for constant update.
– Bring Your Own SNORT OINKCODE to get advanced rules.

 

Usage:

 

Source: https://sourceforge.net/projects/cleandns