DoS tool identity

Steve Bernard sbernard at gmu.edu
Wed Sep 3 16:57:03 GMT 2003


A server here was recently the target of a UDP flood attack. All of the
packets had the following as part of the UDP data. Has anyone seen this
particular signature before?

"packetmonkey....ip:%s.x:0.port:%"


Thanks,

Steve Bernard
George Mason University
Fairfax, Virginia



More information about the unisog mailing list