RBRegő Botond Ronyeczinzerohook.hashnode.dev·Jun 4 · 9 min readTop 10 DNS Security Tools for Proactive Threat Hunting (2026)Most DNS security advice is reactive. Something breaks, you investigate. But the teams that catch problems early aren't waiting for alerts from their SIEM — they're actively mapping their own attack s00
RBRegő Botond Ronyeczinzerohook.hashnode.dev·Jun 4 · 10 min readDeveloper's Guide to MTA-STS and TLS Reporting (2026) Most developers have heard of SPF, DKIM, and DMARC. Far fewer have heard of MTA-STS, and almost nobody has set up TLS Reporting. Which is a shame, because MTA-STS closes a real gap that the other thre00
RBRegő Botond Ronyeczinzerohook.hashnode.dev·Jun 4 · 6 min readSPF, DKIM, DMARC: The Developer's Fixing Guide (2026)You deployed your app. Transactional emails are set up. Users sign up and trigger a welcome email, but it lands in spam or, worse, never arrives. This isn't a code issue. It's a DNS configuration prob00
RBRegő Botond Ronyeczinzerohook.hashnode.dev·Jun 4 · 4 min readSubdomain Takeover Explained (and How to Fix It)You shut down a product. You deleted the Heroku app, tore down the S3 bucket, and removed the Netlify site. But you probably forgot the DNS record pointing to it. That subdomain is now up for grabs. T00
RBRegő Botond Ronyeczinzerohook.hashnode.dev·Jun 4 · 7 min readCertificate Transparency Logs: How Attackers Map Your Infrastructure Before You Know They're LookingYou deleted the staging server. You closed the Jira ticket. You told your team the migration is done. But somewhere out there, a publicly searchable database has been quietly logging every TLS certifi00
