Am I dealing with a crafty DDOS attack?

I am an Xbox gamer. I have been dealing with an person who has used his skill set to ddos me. It’s proven via messages (reported messages MANY times and nothing has been done). I believe the intensity of the attacks have increased to a much more severe type of an attack than your traditional ddos where you reset the router/modem and you are good. Over the last 3 months I have been booted offline and dealing with tons of lag often leading to no connection. At first it was just a disconnection and as time progressed… three months later here I am almost on a timed schedule where I lose internet from 11am and regain internet around 10 pm. At first it would go out around 1-1:30pm and come back around 7pm. Everyday over the last week that gap has become larger and larger increasing 15-30 minutes on both ends leading to almost 12 hours without internet. I have talked to my isp MANY times and they have replaced every bit of line from the street all the way to my house and no results “everything seems to be running fine on our end”. ISP telephone support tells me there is signal to my modem but no signal back. I have used multiple different setups, 2 different types of modem and router setups, and I have tried using a single Unit modem/router. None of which are able to connect to the internet from 11am-10pm (exact same issue reguardless of setup). Times are not exact but within a 30 minute window of those times every time every day. I obtained a VPN, that too has made no difference. I have played with wall outlets on both sides of the wall to check for interference and nothing has changed. Most times I am home alone with nothing but my Xbox and normal everyday appliances running. With my ISP so clueless to a resolution, this leads me to believe a more serious ddos attack is taking place. Any advice/help would be highly appreciated. Thank you!

DDoS using websites instead of bots?

What if a ddos attacker hits public websites (google, amazon etc) with some requests but spoofed the souce ip to the victim’s ip. Now the responses will be sent to the victim’s ip.

Attacker can rotate between the millions of public websites so that the site wont find anything suspicious.

This seems like an easier way than having a malware botnet to do it. The attacker is just using the websites as botnet. Anyone can just do it with the personal computer (or faster and high bandwidth aws/azure VM) and with just 10-20 lines of code.

Why ddos attackers are not doing this instead of buying botnets?

*Lifelong Free Hosting – FREE Auto SSL – DDOS Protection – Hostpoco.com

Everyone attract to Free Web Hosting in Google Search. Yes, it’s true and Hostpoco.com always trying to give the best possible features with our services, and hence most of the clients are now moving with us. Our features like max space and bandwidth perfectly suit for startups..hence we are requesting everyone to try our services once and then decide.

*FREE Startup Plan:$0 /Lifetime
– Single Domain Hosting
– 200MB Web Space
– 200MB Bandwidth
– 2 Email Accounts
– 2 Sub Domains
– FREE Auto SSL
– DDOS Protection
– 99.99% uptime
– Softacolous Supported
– Tier 1 Technical Support

We also offer you the freedom to upgrade your existing Free Web Hosting plan to Paid Unlimited Web hosting service plan and we guarantee that there won’t be any type of data loss of such upgrades. You simply suppose to initiate an upgrade from the client area and need to pay the respective amount and a new package will be assigned as soon as you are done with the payment!

For more information: https://hostpoco.com/free-hosting.php

Thank You.

My VPS was used for DDOS Attacks

I got an email from my hosting provider telling me that my VPS was used to perform DDOS attacks on this website: cpanel4.vhosting-it.com. Unfortunately I haven’t read their email sooner, so they suspended my account.

Here’s the log that they receive from the attacked website.

Before reactivating my VPS, I want to know how can I find the shell script used to perform the attack and how the attacker have gained access to my vps? how can I protect my VPS after reactivating it?

I’m using Ubuntu 18.04 + nginx + ISPConfig

Thanks

Best Seller Hosting | $1/M | SSD | Free Backups | Free DDoS | Lets Encrypt SSL – Host

Hostpoco.com is a Cheap & BUDGET, yet FAST and RELIABLE web hosting provider. We have staff available 24/7 to provide nearly instant support to all of our customers when they need. You can be certain that your site almost has zero downtime as long as you have an active service with us. We own our web server, which is an advantage for our customers since we immediately react if there is anything unusual with the server, or if any customer needs to install custom software.

We have perfectly set the platform in the form of free hosting for beginners, they can learn what hosting is and how easy to handle tasks related to our control panel. Also, we offer freedom to clients to upgrade their service to any higher plan from free hosting to high config plans. I am sure that no one can do that but our intention for doing this just has of the free learning experience for such beginners. We have HDD and SSD hosting starting from $0.5 per month based on unlimited features. So if you are looking for a long term, reliable, and professional shared hosting server, do give us a try. We have a 30-day money-back policy applied to all customers. You are absolutely safe when signing up with us.

Available locations include Canada, New York, UK, Singapore, Germany, Australia and now France!

Features Come With Shared Hosting Plans :

– cPanel
– Website Builder (Standard+Pro)
– Softaculous
– Unlimited space
– Unlimited Bandwidth
– Cloudflare
– Free SSL certificates
– PHP Selector (5.x-7.x)
– ModSecurity
– SSH For SSD Hosting Only
– Dedicated IP (optional, $2/month)
– CloudLinux
– 24/7/365 Support
– 99.9% Guaranteed Server Up-Time
– Antivirus and Mal-ware Protection
– DDOS protection enabled
– No Contracts, No Catch
– 30 Days Money Back Guarantee
– Free Migration Service
– Max RAM Assigned
– Multiple GEO locations
– Free Setup

Hostpoco.com: Budget Hosting Provider | Cheap Hosting Provider | Cheap cPanel Hosting | $1 Unlimited hosting | Fast SSD Hosting | Money back Hosting | Best Seller hosting | ideal free hosting | free web hosting

https://hostpoco.com/

Thank you.

DDOS attack mitigation – enough to analyse only GET/POST requests?

I am developing a DOS attack recognition module for application layer requests. The application has a backend consisting several APIs. They all are connected through an API gateway(developed in Nodejs). Every request is recorded to a database and another server (written in python-Flask) analyses the number of GET/POST requests for every 20 seconds and calculate the entropy of the incoming requests and block any suspicious IPs based on the entropy value.

My question is, In order to defend from DOS attacks, do I have to consider other types of TCP packets other than HTTP’s (ex: ICMP).

My backend APIs doesn’t allow any user to continue without logging in. In that case is it worth developing the DOS attack recognition module.

Architecture of the application

The research paper: https://www.sciencedirect.com/science/article/pii/S1877050915005086

I need just to protect my website against DDoS. Is Cloudflare for me?

My website hosts 2,000,000+ webpages, and I need to protect it against frequent DDoS I suffer.

I’m considering using Cloudflare. But I’ve read that Clodflare creates some problems with the TTFB and waiting times, and I don’t want Google to penalize my website. As far as I understand, the increase of TTFB leads to an increase of the “Time Spent Downloading a page” of Search Console, leading to a penalization of the Crawl Budget and the SEO ranking.

As mentioned, I just need to protect my website agains DDoS, not extra features. Are there other services similar to Cloudflare, which just protect websites against DDoS?

Thank you very much.

Best Seller Hosting | $1/M | SSD | Free Backups | Free DDoS | Lets Encrypt SSL – Host

Hostpoco.com is a Cheap & BUDGET, yet FAST and RELIABLE web hosting provider. We have staffs available TRUELY 24/7 to provide nearly instant support to all of our customers when they need. You can be certain that your site almost have zero down time as long as you have an active service with us. We own our web server, which is an advantage for our customers since we immediately react if there is anything unusual with the server, or if any customer need to install custom software.

We have perfectly set the platform in the form of free hosting for beginners, they can learn what hosting is and how easy to handle tasks related with our control panel. Also, we offer freedom to clients to upgrade their service to any higher plan from free hosting to high config plans. I am sure that no one can do that but our intention for doing this is just have of free learning experience for such beginners. We have HDD and SSD hosting starting from $0.5 Per month based on unlimited features. So if you are looking for a long term, reliable, and professional shared hosting server, do give us a try. We have a 30-day money-back policy applied to all customers. You are absolutely safe when signing up with us.

Available locations include: Canada, New York, UK, Singapore, Germany, Australia and now France!

Features Come With Shared Hosting Plans :

– cPanel
– Website Builder (Standard+Pro)
– Softaculous
– Unlimited space
– Unlimited Bandwidth
– Cloudflare
– Free SSL certificates
– PHP Selector (5.x-7.x)
– ModSecurity
– SSH For SSD Hosting Only
– Dedicated IP (optional, $2/month)
– CloudLinux
– 24/7/365 Support
– 99.9% Guaranteed Server Up-Time
– Antivirus and Mal-ware Protection
– DDOS protection enabled
– No Contracts, No Catch
– 30 Days Money Back Guarantee
– Free Migration Service
– Max RAM Assigned
– Multiple GEO locations
– Free Setup

Hostpoco.com: Budget Hosting Provider | Cheap Hosting Provider | Cheap cPanel Hosting | $1 Unlimited hosting | Fast SSD Hosting | Money back Hosting | Best Seller hosting | ideal free hosting | free web hosting

https://hostpoco.com/

Thank you.

*World best free web hosting-Free Auto SSL-Fully DDOS Protected-Hostpoco.com

Hostpoco is now becoming first choice for Free Web Hosting in Google Search. Yes, it’s true and we are always trying to give best possible features with our services and hence most of the clients are now moving with Hostpoco. Our features like max space and bandwidth perfectly suit for startups..hence we are requesting everyone to try our services once and then decide ”

Hostpoco is a newly formed organization that works on the basis of “No Profit-No Loss”. Our intention is to work against traditional hosting firms who are charging more than the expectation against small requirements of beginners and indirectly help clients to save their money. Hostpoco is offering half dollar per month web hosting services along with the free Lifetime web hosting for our clients. Also, we deal with feature-packed hosting services products range under famous hosting categories Shared HDD/SSD Hosting, Reseller Hosting, VPS Hosting, Dedicated Hosting, Domain Registration, SEO, Web Designing, Logo Designing & SSL certificate Services.

Our Main Feature:
Free Auto SSL
-As per google updates SSL is compulsory for all website and we are offering it as an free with all our hosting plans.

DDOS Protected Services-All our Servers are Fully DDOS Protected and ensures the best uptime for client sites

Single Click Script Installer-Hostpoco offers single click script installer library named Softacolous..so that CMS script can be installed easily

Free Site Builder-Hostpoco offers free site builder named Sitepad along with all our shared hosting plans

Free Migration-Hostpoco.com offers Free Migration services all our hosting plans and we are fully committed to migrate sites from the previous host to our hosting services!

Softacolous Library-Hostpoco offers free single click script installer with free hosting so that any script can be installed in a single click.

99.99%Uptime Guarantee-We offers 99.99%uptime with our webb hosting services and having 24/7 Live Monitoring Systems for our servers!

Hostpoco offers you the freedom to upgrade your existing Free Web Hosting plan to Paid Unlimited Web hosting service plan and we guarantee that there won’t be any type of data loss of such upgrades. You simply suppose to initiate the upgrade from client area and need to pay the respective amount and new package will be assigned as soon as you done with the payment!

For more Details:https://www.hostpoco.com/

Thank you.