[Return to Search]

To request access this dataset you will need to login with an IMPACT account. Accounts are free. If you don't have one please register.

This dataset is no longer available and has a current status of 'Withdrawn'.
Please see the catalog for a listing of currently available datasets.

Summary

Dataset ID

DS-0580

DOI

10.23721/105/1354086

Name

DNS AMPL DDOS DEC2015

Record Type

Dataset

Provider

Merit Network, Inc.

Host

Merit Network, Inc.

Collection Starting

07/22/2015

Collection Ending

07/22/2015

Popularity Rank

25 (lowest rank is 52)

Category & Restrictions

Description

Short Description
A DNS-based amplification DDOS attack

Long Description
This is a real-world DDoS attack captured at Merit's border router in SFPOP. It's a reflection and amplification Distributed Denial of Service attack (DDoS) that is mostly based on the DNS protocol. The attack appears within WSUe/ft-v05.2015-07-22.140005-0400. The attack victim should appear under 204.38.0.0/21

Additional Details

Size

33.5GB

Anonymized

true

Ongoing Measurement

false

Generated Keywords

merit, network, ddos, dns, ampl, dec2015, dns ampl ddos dec2015, 580, 2015, merit network, inc., anonymized, attack, based, amplification, service, real, 204, 140005, distributed, v05, reflection, flow, border, traffic, denial, wsue, victim, sfpop, captured, 0400, protocol, router, ft, appears, 07, traffic flow data

Additional Keywords

Dataset Details

Summary

Category & Restrictions

Description

Additional Details