Sorry if this is moronic - but can companies not just institutionalize a policy where all internal network dns is do53, and then only translates to doh at the egress? And vice-versa? I know there is obvs something preventing this, can someone smarter than me please help me out?
Something that I noticed is that DNS recon can be fairly easy to spot and I don't think any of the encryption methods would hide it, if you own the authoritative nameservers and can log from them. I used Elasticsearch' packetbeat on the nameserver, thereby avoiding the DNS servers logging limitations.
i dont mean to be so offtopic but does any of you know a method to log back into an Instagram account..? I stupidly lost the login password. I would love any assistance you can offer me.
@Gannon Jedidiah thanks for your reply. I got to the site on google and Im trying it out now. Seems to take a while so I will reply here later with my results.