DNS-over-TCP considered vulnerable

Guest Post: There are several ways attackers can force TCP to fragment for inclusion in IP fragmentation attacks.

DNS Cookies: The Transaction Mechanism to Protect the Namespace - Digital Responsibility & Sustainability - Issues - dotmagazine

Assessing Support for DNS-over-TCP in the Wild

SIGRed - Resolving Your Way into Domain Admin: Exploiting a 17 Year-old Bug in Windows DNS Servers - Check Point Research

PolarDNS - Free DNS Server Vulnerability Research & Pentesting

New NAME:WRECK Vulnerabilities Impact Nearly 100 Million IoT Devices

Detecting DNS over HTTPS (DoH) in a corporate network

Addressing the challenges of modern DNS a comprehensive tutorial - ScienceDirect

DNS-over-TCP considered vulnerable

Report: Air-Gapped Networks Vulnerable to DNS Attacks

Use DNS over TLS for default FortiGuard DNS servers 7.0.4, FortiGate / FortiOS 7.0.0

INFRA:HALT flaws impact OT devices from hundreds of vendors