Hey all, been reading the posts for about a month now and I'd like to thank OTW and a few others I cant remember now for your help. Im a visual kinda guy and prefer the finished product to analyze it to learn. I have a question question. Is there a way to back trace a dos/ddos when Im pretty sure Its a botnet.(multiple ips from multiple locations but usually the same 3-4). My stepson has caused some trouble via garys mod and its affecting all of us. Please help.
Forum Thread: DDOS help
- Hot
- Active
-
Forum Thread:
I'm Not Able to Create a How-to Article
5
Replies
4 hrs ago -
Forum Thread:
Kali Linux Stuck at Booting
13
Replies
11 hrs ago -
Forum Thread:
Hacking a Instagram Account
11
Replies
11 hrs ago -
Forum Thread:
Get a Email from an Ip-Adress?
0
Replies
15 hrs ago -
Forum Thread:
Error When Opening Excel Files
1
Replies
17 hrs ago -
Forum Thread:
What Would Cause You to Be Able to Hack a Wifi Using Reaver Then After Reloading the Kali Os It Can't Crack It
1
Replies
1 day ago -
Forum Thread:
How to Train to Be an IT Security Professional (Ethical Hacker)
23
Replies
1 day ago -
Forum Thread:
How to Infect a Device?
2
Replies
1 day ago -
Forum Thread:
Tp-Link wn722n Usb Porblem with Kali Linux.
53
Replies
1 day ago -
Forum Thread:
Airmon-Ng and Airodump-Ng Not Working on Kali Linux
21
Replies
1 day ago -
Forum Thread:
how to become a hacker and what i have to do after 12th :)
0
Replies
1 day ago -
Forum Thread:
How to Install VMWare Tools in Kali Linux Rolling 2016
1
Replies
2 days ago -
Forum Thread:
Hacking Android Problem!
6
Replies
2 days ago -
Forum Thread:
Does iCloud Tell Their Users Anything if You Change Their Password Through Security Questions?
0
Replies
2 days ago -
Forum Thread:
How to Remotely Control a Sony Bravia or View Its Contents
0
Replies
2 days ago -
Forum Thread:
Can We Send Apk File Which Install in Android without users notice and Then Send Us Audio File and Record Every Bit of
6
Replies
2 days ago -
Forum Thread:
DNS Spoofing Doesn't Work
2
Replies
2 days ago -
Forum Thread:
Why Do I Want to Be a Hacker? (For Newbies) 2017
4
Replies
3 days ago -
Forum Thread:
MSF Handler Failed Bind to External Ip
3
Replies
3 days ago -
Forum Thread:
How Can Hack Someones Android Phone in Same Wifi Network???
4
Replies
3 days ago
-
How To:
4 Ways to Crack a Facebook Password & How to Protect Yourself from Them
-
How To:
Use MinGW to Compile Windows Exploits on Kali Linux
-
How to Hack Wi-Fi:
Get Anyone's Wi-Fi Password Without Cracking Using Wifiphisher
-
How to Use PowerShell Empire:
Getting Started with Post-Exploitation of Windows Hosts
-
How To:
Simulate a RAT on Your Network with ShinoBOT
-
How to Hack Wi-Fi:
Build a Software-Based Wi-Fi Jammer with Airgeddon
-
The Hacks of Mr. Robot:
How to Spy on Anyone's Smartphone Activity
-
How To:
Successfully Hack a Website in 2016!
-
How To:
Get Unlimited Free Trials Using a "Real" Fake Credit Card Number
-
How To:
Crack Wi-Fi Passwords with Your Android Phone and Get Free Internet!
-
How To:
Crack Any Master Combination Lock in 8 Tries or Less Using This Calculator
-
Hack Like a Pro:
How to Secretly Hack Into, Switch On, & Watch Anyone's Webcam Remotely
-
How To:
Hack Windows 7 (Become Admin)
-
How To:
Set Up a Headless Raspberry Pi Hacking Platform Running Kali Linux
-
How to Hack Wi-Fi:
Capturing WPA Passwords by Targeting Users with a Fluxion Attack
-
Hack Like a Pro:
How to Crack Passwords, Part 1 (Principles & Technologies)
-
How to Hack Wi-Fi:
Cracking WPA2-PSK Passwords Using Aircrack-Ng
-
How To:
Hack WPA WiFi Passwords by Cracking the WPS PIN
-
Advice from a Real Hacker:
How to Know if You've Been Hacked
-
Hack Like a Pro:
Getting Started with Kali, Your New Hacking System
5 Responses
a botnet you say? well then it's fairly impossible to trace it back to a specific IP address/location. even when it isn't a botnet you may still not find out the IP address of the attacker because there is something named IP spoofing. but looking from the situation you are just being attacked by a script kiddie who doesn't even know how to spoof his IP address. you can try using a sniffer on your network to see where the huge amount of traffic is coming from. i am pretty sure there are tutorials here on Null Byte about sniffers. just search for "Network Sniffing" or "Wireshark".
also, with my ISP, i can just call them and tell them i'm under a DDoS attack and then they change my IP address. perhaps your ISP could do the same?
good luck with the hunt!
-Phoenix750
yeah Im over in AUS and it will cost me 90 dollars to change my ip. Bogus I know. I use wireshark and thats how I know Im getting udp flooded.
what i would do in your case is just unplug your router during the night (+/- 6 hours). this will constantly show your IP address as offline to the attacker(s), thinking they took you down. so when they think they got rid of you, they will move on. then after "the storm is over", just plug your router in again and the attackers will be gone. and if you have a dynamic IP address your IP address will most likely change.
hope i helped
-Phoenix750
P.S. i would keep the .pcap from wireshark, so you can investigate it later.
.pcap?
Pcap is the default file format of Wireshark
Share Your Thoughts