Layer 7 DDoS Against Our Website - MikroTik

Asphyxia

Server Monkey
Administrator
Joined
Apr 25, 2015
Messages
1,044
Points
237
Age
25
Location
North America
Idiots attack us from time to time, the fun part? Scanning their attacking IP addresses for common symptoms. In this case, just load their bot list straight through a web client (some may already be shutdown by ISP) for example:


A lot of times, the attacking guests that flood SQL requests (to maximize server resources e.g. generate excessive RAM use) - they will be compromised by an attacker. In the above, you see they share one common symptom. So what do we have here? Well, let's just fucking search Google for MikroTik - heh. Well would you look at that? Unpatched vulnerability in MikroTik RouterOS enables easily exploitable denial of service attack.

Fuck you idiots.

1919

It makes me feel very good that some people think it is a good idea to waste attack resources on us. I assure you I have an automated process to compile ALL attacking IP addresses and report abuse. Someone just burnt their botnet straight beyond hell, it is gone mostly. :)

Keep on goin'
 
Last edited:

Asphyxia

Server Monkey
Administrator
Joined
Apr 25, 2015
Messages
1,044
Points
237
Age
25
Location
North America
And of course..

1925

The number of guests is atypical - more bots are definitely flooding. Vast majority of flood traffic incoming from Thailand, Bangladesh, Mexico, and such.. kind of sad the extent of the Layer 7 attack so I had to turn on attack mode.
 

martyns

Helpful Member
VIP
Joined
Aug 28, 2017
Messages
92
Points
36
Age
21
Location
Germany
And of course..

View attachment 1925

The number of guests is atypical - more bots are definitely flooding. Vast majority of flood traffic incoming from Thailand, Bangladesh, Mexico, and such.. kind of sad the extent of the Layer 7 attack so I had to turn on attack mode.
I just saw it, like wtf 2800 users, 10 mins ago was around 180 xd
 

Top