Tag
Network allow-lists are insufficient to prevent data exfiltration via authorized channels like DNS or allowed endpoints. Canister, a lightweight Linux sandbox, addresses this with a layer-7 egress proxy that performs TLS interception and data-loss prevention.
MasterDnsVPN is an open-source scientific/research project that tunnels TCP traffic through DNS queries and responses, offering advanced features like multipath routing, ARQ reliability, and low protocol overhead compared to similar tools like DNSTT and SlipStream.