Featured writeup

DNS-over-HTTPS Gateway for Any App with Node.js

Build a production-minded local DNS-over-HTTPS gateway that lets ordinary applications use encrypted upstream DNS through a standard UDP or TCP DNS listener.

Network Security Engineering 18 min read May 14, 2026

7 modules

covering DNS packet parsing, DoH forwarding, caching, domain policy, health checks, metrics, and deployment

Read the writeup

Network Security Engineering SIEM Engineering SOAR Operations Virtualization Security and System Engineering

Latest writeups

A sharp, readable feed for technical publishing

SIEM Engineering 16 min read

Controlled DNS TXT Messaging with BIND, rsyslog, and Splunk Audit Logging

A controlled Linux lab workflow for publishing short authorized DNS TXT status messages and forwarding sender, receiver, and BIND audit logs to Splunk.

April 22, 2026 Open

SIEM Engineering 10 min read

Linux ISC BIND DNS Deployment with Splunk-Ready rsyslog Monitoring

A practical Debian and RHEL compatible workflow for installing ISC BIND, validating DNS records, and forwarding operational DNS logs to Splunk through rsyslog.

April 22, 2026 Open

SIEM Engineering 10 min read

ISC BIND Parsing for SC4S with Optional Dynamic Update Observability

A clean SC4S parser pattern for Splunk_TA_isc-bind plus optional dynamic DNS update observability for authorized helper-program logs.

April 22, 2026 Open

Virtualization Security and System Engineering 10 min read

VMware Shared Folder Access in Linux Guests with Safe Automation and Hardening

A safe automation guide for mounting VMware shared folders in Linux guests, with practical hardening guidance for minimizing host data exposure.

April 22, 2026 Open

SOAR Operations 12 min read

IBM QRadar SOAR Enterprise Deployment and Operations SOP

A practical enterprise SOP for IBM QRadar SOAR installation, validation, QRadar integration, upgrade planning, and operational health checks.

April 20, 2026 Open