The dns-logger provides a light-weight
vendor-agnostic method for organizations to capture
detailed DNS query and response activity. Messages are
formatted using either JSON or Syslog, allowing easy
integration with SIEM or Syslog infrastructures.
YARA, from VirusTotal, is a powerful tool that can be used
to identify and classify malware. Use yaraka to scan your
organizations email in real-time using YARA, without
changing your email architecture.