DNS Hunting - What are you doing to monitor DNS traffic?

Poll created by KEVIN DIENST on Jan 12, 2017

I'm interested in getting feedback from the community on what tactics you're using to monitor DNS exfiltration and/or potential DNS based C2. 

6 total votes You cannot vote on this poll
  • Hunting reports based off DNS packet data?
    4
  • Hunting reports based off DNS log data?
    0
  • Data science magic based off packet or DNS query logs
    1
  • Vendor Blacklist/Whitelist tool (Infoblox has a tool like this)
    0
  • Other? Describe in comments sections please!
    1