Hey all, been reading the posts for about a month now and I'd like to thank OTW and a few others I cant remember now for your help. Im a visual kinda guy and prefer the finished product to analyze it to learn. I have a question question. Is there a way to back trace a dos/ddos when Im pretty sure Its a botnet.(multiple ips from multiple locations but usually the same 3-4). My stepson has caused some trouble via garys mod and its affecting all of us. Please help.
Forum Thread:
Hack Without Sending an Executable?
13
Replies
Forum Thread:
How to Send Files?
4
Replies
Forum Thread:
How to Connect?
2
Replies
Forum Thread:
Monitor Mode Kills WiFi Kali Linux
12
Replies
Forum Thread:
How to Log Users Connecting to a Wifi Router?
6
Replies
Forum Thread:
[HELP] [NEWBIE] Lost Wifi Connection in Kali 2.0
20
Replies
Forum Thread:
How to Crack Window Password with Kali Live Usb
7
Replies
Forum Thread:
Who Can Help Me Get an Ip Address for Someone's Twitter Account Please?
5
Replies
Forum Thread:
Hide the Console (Cmd) Of an Exe
11
Replies
Forum Thread:
Where the All Part of Recon-Ng Goes????
0
Replies
Forum Thread:
Gaining Access into the Victim's Whatsapp on Android
3
Replies
Forum Thread:
Hacking Devices Without Payload?!
6
Replies
Forum Thread:
Hello,
0
Replies
Forum Thread:
Catching Exploits/Malware on a Live OS Honeypot!
3
Replies
Forum Thread:
Kali Linux Not Boot/Grub Loader Missing
2
Replies
Forum Thread:
Can You Run Kali Programs in Python on a Windows Computer?
1
Replies
Forum Thread:
Hacking Emails / SMTP Using Hydra / Bruteforce Tools
2
Replies
Forum Thread:
Mobile Hotspot Port Forwarding
12
Replies
Forum Thread:
How do i convert my EXE or JAR files to .pdf .doc .rar ETC..... to silent mode in kali Linux withou affecting the file.
2
Replies
Forum Thread:
Kali USB Loud Beep
10
Replies
How To:
4 Ways to Crack a Facebook Password & How to Protect Yourself from Them
How To:
Scrape Target Email Addresses with TheHarvester
How To:
Sieze Control of a Router with Routersploit
How to Hack Wi-Fi:
Get Anyone's Wi-Fi Password Without Cracking Using Wifiphisher
How To:
Successfully Hack a Website in 2016!
How To:
Wardrive with the Kali Raspberry Pi to Map Wi-Fi Devices
How To:
Crack Any Master Combination Lock in 8 Tries or Less Using This Calculator
Hack Like a Pro:
How to Secretly Hack Into, Switch On, & Watch Anyone's Webcam Remotely
Hack Like a Pro:
How to Spy on Anyone, Part 1 (Hacking Computers)
How To:
Set Up a Headless Raspberry Pi Hacking Platform Running Kali Linux
How to Hack Wi-Fi:
Cracking WPA2-PSK Passwords Using Aircrack-Ng
How To:
Get Unlimited Free Trials Using a "Real" Fake Credit Card Number
Social Engineering:
How to Use Persuasion to Compromise a Human Target
How to Hack Wi-Fi:
Capturing WPA Passwords by Targeting Users with a Fluxion Attack
How To:
Hack Android Using Kali (Remotely)
How To:
Install Kali Live on a USB Drive (With Persistence, Optional)
Hack Like a Pro:
How to Hack Facebook, Part 2 (Facebook Password Extractor)
Hack Like a Pro:
Getting Started with Kali, Your New Hacking System
Hack Like a Pro:
How to Exploit and Gain Remote Access to PCs Running Windows XP
How To:
Hack Windows 7 (Become Admin)
5 Responses
a botnet you say? well then it's fairly impossible to trace it back to a specific IP address/location. even when it isn't a botnet you may still not find out the IP address of the attacker because there is something named IP spoofing. but looking from the situation you are just being attacked by a script kiddie who doesn't even know how to spoof his IP address. you can try using a sniffer on your network to see where the huge amount of traffic is coming from. i am pretty sure there are tutorials here on Null Byte about sniffers. just search for "Network Sniffing" or "Wireshark".
also, with my ISP, i can just call them and tell them i'm under a DDoS attack and then they change my IP address. perhaps your ISP could do the same?
good luck with the hunt!
-Phoenix750
yeah Im over in AUS and it will cost me 90 dollars to change my ip. Bogus I know. I use wireshark and thats how I know Im getting udp flooded.
what i would do in your case is just unplug your router during the night (+/- 6 hours). this will constantly show your IP address as offline to the attacker(s), thinking they took you down. so when they think they got rid of you, they will move on. then after "the storm is over", just plug your router in again and the attackers will be gone. and if you have a dynamic IP address your IP address will most likely change.
hope i helped
-Phoenix750
P.S. i would keep the .pcap from wireshark, so you can investigate it later.
.pcap?
Pcap is the default file format of Wireshark
Share Your Thoughts