Some weeks ago I posted a brief intro about a technique that collects DNS responses known as Passive DNS and provided some links to further your knowledge about its uses. Today, I want to share with you a network security monitoring tool that you can use to effectively collect DNS responses passively, and helps you in Incident handling, Network Security Monitoring (NSM) and general digital forensics. This tool is developed by Edward Bjarte Fjellskål.
Download the tool from here – http://hack-tools.blackploit.com/2014/04/passivedns-network-sniffer-that-logs.html#