This week, the co-founders of NextDNS, Romain Cointepas, and Olivier Poitrey, launched dns0.eu, a French non‑profit organization.

dns0.eu is a free-of-charge European GDPR-compliant recursive DNS resolver aiming to provide strong security for the citizens and organizations of the European Union.

Their DNS infrastructure is 100% European, with infrastructure across multiple hosting providers in every member state of the European Union.

dns0.eu protects users from millions of malicious domains — from phishing websites to C&C servers.

They have designed their system to shorten the detection-to-protection window to just a few seconds. As they work closely with threat intelligence providers, CERTs, and other European cybersecurity actors, they can provide the highest protection against Internet threats to European citizens and organizations.

There are three levels of protection. You can protect yourself with the primary service by following these four steps:

1. In your browser, enter your router's IP address to access the router's administration console.

2. Navigate to where the DNS settings are specified.

3. Add 193.110.81.0 and 185.253.5.0

4. Save your changes.

The ZERO level for those needing more robust protection is hardened security for susceptible environments.

Massively increase the catch rate for malicious domains — especially in their brutal early hours — by combining human-vetted threat intelligence with advanced heuristics that automatically identify high-risk patterns.

The ZERO level includes the following protection services:

Newly Registered Domains (NRD)
Block domains registered less than 30 days ago. Those domains are known to be favored by threat actors to launch malicious campaigns.

Newly Active Domains (NAD)
Block domains that, after having been dormant for a while, are suddenly becoming active. This behavior is, more often than not, a sign of malicious activity.

Domain Generation Algorithms (DGA)
Block domains generated by Domain Generation Algorithms (DGAs) usually appear in various families of malware that bad actors use as rendezvous points with their command and control servers.

IDN Homographs
Block domains that impersonate other domains by abusing the large character set made available with the arrival of Internationalized Domain Names (IDN) — e.g., replacing the Latin letter "e" with the Cyrillic letter "е" and similar.

Typosquatting
Block domains registered by malicious actors that target users who incorrectly type a website address into their browser — e.g., gooogle.com instead of google.com.

DNS Rebinding
Prevent attackers from taking control of local devices through the Internet by automatically blocking DNS responses containing private IP addresses.

Dynamic DNS (DDNS)
Dynamic DNS (or DDNS) services let malicious actors quickly set up hostnames for free without validation or identity verification. While legit DDNS hostnames are rarely accessed in everyday use, bad actors use their malicious counterparts heavily in phishing campaigns — e.g., paypal‑login.duckdns.org.

Cryptojacking
Prevent the unauthorized use of one's devices to mine cryptocurrency.

Parked Domains
Parked domains are single-page websites often laden with ads and devoid of any value. Parked domain monetization can sometimes get mixed up with questionable practices and malicious content.

High-risk Top-level Domains (TLD)
Block Top-level Domains (TLDs) that are known to be favored by threat actors because of their low price, the absence of vetting, or the lack of legal recourse.

To install the ZERO level protection, follow these four simple steps:

1. In your browser, enter your router's IP address to access the router's administration console.

2. Navigate to where the DNS settings are specified.

3. Add 193.110.81.9 and 185.253.5.9

4. Save your changes.

Finally, they also offer a childproof version, called KIDS, to protect against content not suitable for children. This version is tailor-made for parents with under-age children.

The KIDS version includes the following protection services:

No porn or other adult websites
Blocks websites containing pornographic, gambling, and other adult content.

No explicit search results
Filter explicit results on all major search engines, including images and videos. That will also block access to search engines not supporting this feature.

No mature videos on YouTube
Filter out mature videos on YouTube and block embedded mature videos from being watched on other websites, including hiding all comments.

No dating websites or apps
Blocks all dating websites and apps that could be used by predators.

No mixed-content websites
Blocks websites that contain some adult material even if their core focus is hosting content suitable for children — e.g., Reddit, Twitter.

No piracy
Blocks torrent websites, protocols, copyright-infringing streaming websites and generic video hosting websites used mainly for illegally distributing copyrighted content.

No ads
Most ads on the Internet are not specifically crafted — and not suited — for children.

To enable the KIDS protection on your internet router, follow the simple four steps:

1. In your browser, enter your router's IP address to access the router's administration console.

2. Navigate to where the DNS settings are specified.

3. Add 193.110.81.1 and 185.253.5.1

4. Save your changes.