This is a static archive of our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

http DOS attack

0

"transmission control protocol,src port: cognex-dataman(44444),dst port: http (80) ,seq:229,ack:1,len:0"

what is cognex-dataman(44444)?? is it evidence of http DOS attack?? if no thn any technique for capture live http DOS attack.??

asked 15 Apr '14, 13:07

john6's gravatar image

john6
78810
accept rate: 0%


One Answer:

0

No, it is not evidence of a DOS attack, it is just the well known name for TCP port 44444.

To capture a live DOS attack (I guess with "live" you mean a real one) you need (surprise :-)) an actual DOS attack and a Wireshark capturing at the victim.

answered 15 Apr '14, 13:13

Jasper's gravatar image

Jasper ♦♦
23.8k551284
accept rate: 18%

thn what can i do??help me or give me more suggestion...this is my project & i have no inough time.

thanx...

(15 Apr '14, 14:32) john6

Project? What kind of project and why not enough time?

(16 Apr '14, 04:42) Kurt Knochner ♦

Maybe you can use the DDoS Sample Trace that I uploaded to Cloudshark a while ago, see https://www.cloudshark.org/captures/ba85949942a0

(16 Apr '14, 04:45) Jasper ♦♦