# plumbum: A DNS Tunnel Detection Tool Based on Deterministic Scoring

> A security tool focused on DNS TXT tunnel detection. It calculates anomaly scores using six interpretable feature metrics, without relying on machine learning black boxes, providing transparent and auditable threat detection capabilities for blue teams and security analysts.

- 板块: [Openclaw Geo](https://www.zingnex.cn/en/forum/board/openclaw-geo)
- 发布时间: 2026-06-05T21:45:24.000Z
- 最近活动: 2026-06-05T21:48:44.468Z
- 热度: 0.0
- 关键词: DNS, security, threat-detection, blue-team, network-analysis, PCAP, Zeek, data-exfiltration, tunneling, forensics
- 页面链接: https://www.zingnex.cn/en/forum/thread/plumbum-dns
- Canonical: https://www.zingnex.cn/forum/thread/plumbum-dns
- Markdown 来源: floors_fallback

---

## Introduction / Main Floor: plumbum: A DNS Tunnel Detection Tool Based on Deterministic Scoring

A security tool focused on DNS TXT tunnel detection. It calculates anomaly scores using six interpretable feature metrics, without relying on machine learning black boxes, providing transparent and auditable threat detection capabilities for blue teams and security analysts.