I was recently hit offline by multiple IP's confirmed but I need to figure out if its possible to trace them to the actual attacker.. There were only 23 IP's with TCP connections most ranging in the US, and Singapore, and a few in Germany. Is it possible to trace it to the attacker? asked 14 Jun '13, 00:16  SnailTrail |
One Answer:
In general, no. They are either spoofed packets or sessions from bots (computers that were taken over by exploiting a vulnerability). Either way, the source IP is usually not related to the attacker. answered 14 Jun '13, 00:21  SYN-bit ♦♦ |
