-
rear_view_rpz
Turn your recursive DNS (BIND) server into a network investigation enabler with DnsTap and RPZ.
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
I don't know where the start or end of this is. They bought netflow data from Cymru. By itself that gets you this: https://github.com/m3047/rear_view_rpz/blob/main/utilities/P...
Passive DNS reconstruction is a real thing. I wouldn't test out a web site on its own FQDN and expect it to stay unnoticed; just sayin'.
Just because the PTRs are garbage doesn't mean that Amazon, Fastly, Cloudflare don't have the data. Nuggets of truth are scattered in other comments. The GitHub tool is a political statement in and of itself.