BitSquat Domains

This is a simple page to compute the bit-squats of a domain name. A bit-squat is a domain name that is similar to another domain name but has one or more bits flipped in its binary representation. It can be used to create typosquatting domains or to find potential vulnerabilities in domain name systems. The code below will generate a list of bit-squats for the domain name you enter. It will flip each bit in the binary representation of the domain name and display the resulting domain names....

April 3, 2025 · 1 min · Warren Kumari

TLDs that are also file extensions

There has recently been some concerns expressed around new TLDs colliding with file extensions. While I’m the first to raise concerns around collisions, I think that this particular ship has sailed. As an example, the DEC VAX and CP/M used .COM as a file extension. This was then carried over into MS-DOS (and Windows) - a good example of this being command.com. While this confusion was briefly abused, but mitigations were quickly put in place....

May 15, 2023 · 5 min · Warren Kumari

Causes of DNS information hiding

Causes of DNS information hiding One of the recurring discussions in the ICANN NCAP (Name Collision Analysis Project) is what relevant information about the global DNS namespace can be extracted from the root servers. Increasingly the DNS hides information, both to improve end user privacy as well as to increase performance and reliably. QNAME Minimization Aggressive NSEC LocalRoot Caching Local Authoritative Summary Disclaimer Todo QNAME Minimization DNS Query Name Minimisation to Improve Privacy (originally published in 2016), only sends the minimum required part of the query name to the authoritative servers....

February 25, 2022 · 6 min · Warren Kumari