What is Ping of Death?
=^0^=Ping of Death
=^0^=
Ping is a command to test whether the network is connected or not, and the basic method of using it is as follows:
Firstly, turn on DOS, by:
Windows
95/98
Start→Programs→MS-DOS
Mode
Windows
NT/2000
Start→Programs→Command Prompt Characters
Windows
ME
Start→Programs→Subsidiary Applications→MS-DOS
Mode
Windows
XP
Start→Programs→Subsidiary Applications→Command Prompt Characters
Then type:
Ping
www.xxx.com
(xxx is the server of your choice)
This means that you want to test the connection between your computer and the xxx website.
The results are as follows (only some are listed):
Pinging
www.xxx.com[—. —. —. —]
with
32
bytes
of
data:
Reply
from
—. —. —. –:
bytes=32
time=168ms
TTL=–
Reply
from
—. —. —. —:
bytes=32
time=167ms
TTL=–
Reply
from
—. —. —. —:
bytes=32
time=167ms
TTL=–
Reply
from
—. —. —. —:
bytes=32
time=168ms
TTL=–
Pinging
statistics
for
—. —. —. —
Packets:
sent=4
,
Recieved=4
,
Lost=0
(0%
Lost)
……..
Pinging
www.xxx.com[—. —. —. —]<–server-side IP, as a four-digit number
with
32
bytes
of
data:<–packet size
Now please type Ping
-l
20000
– s
4
www.xxx.com
It means that the packet is transmitted 4 times to www.xxx.com using 20000 bytes.
This author explains how Ping of Death works. According to IP regulations (RFC-791), packets larger than 65535 bytes (i.e., 64KB) are not compliant. Some older operating systems, such as Unix, Windows
3.1, Mac, Netware, etc., do not know how to check and block these packets. By default, all packets are legal. Since the buffer size is only 65535 bytes, a buffer overflow error occurs (i.e. the buffer size is not large enough to receive the packet). The system will crash.
This is a DoS (Denial
of
Service) attack. The attack is not intended to steal data from a computer, but to paralyze someone’s computer. The more powerful DDoS (Distributed
Denial
of
Service) attack involves multiple people working together to attack the same target with a DoS.
The method described in this article is very inefficient and has a high chance of failure, and is only applicable to old and unprotected computers, so it is rarely used by hackers. In addition, if you have Windows
NT/2000
Service
Pack
1 or above, the operating system restricts the size of ping packets to 8000 bytes, which means you can’t use this method of attacking people.
Note 1: Thanks to
Revenger
for suggesting revisions to this article.
Note 2: In addition, if readers are legally liable for attacking other people’s computers, it has nothing to do with the author, and if the victims want to revenge
please don’t play with the author’s computer. ……
ping-t-l65550ip ping of death
Hello, owner. The ping of death you mentioned does exist, for the old operating system, such as windows98, windows2000, more than one machine in the LAN together with this command ping the same ip address, will make the other machine slow down, or even paralyzed. But since winxp and after the operating system, Microsoft has made changes, the death of ping has also become history. All are personally code word oh, absolutely original.
Where is ICMP available? How to use pingofdead?
ICMP (internet control message protocol) is a protocol used in TCP/IP networks for network control, fault notification.
The ping command is an application of ICMP. It is used to test the connectivity of two hosts.
Pingofdead in Chinese is called ping of death.
A host pinging another host sends a packet of 32 bytes by default, and the receiving host responds with a packet of the same size. If there are a lot of packets being sent during a ping, the receiver will use up its own resources in processing them. If there are a lot of hosts sending very large ping packets to a computer at the same time, then that computer may not be able to process them, resulting in a dead or unresponsive ping or a ping that doesn’t go through. This is how pingofdead works. The target host is pinged to death. Specific practice:
Start menu —- run —- enter: “cmd”—- in the command prompt operation: ping-L (in lowercase) 65500-t to ping the IP address, and then enter to execute on it.
It should be noted that: only one machine to ping the target host is ineffective, with the processing performance of today’s computers to thousands of simultaneous ping a computer before it is possible to ping it dead.
And this attack technique is outdated, because many network devices are now set up with ICMP message filtering, which prohibits ping packets from passing through.
Which is the usage and death ping of the ping command in dos?
The above is all wrong
The normal ping is ping ***. ***. ***. ***[-t]
The ping of death is ping-l65500-t***. ***. ***. ***
Principle:By default windows ping sends a packet size of 32byt, we can also define its own size, but there is a size limitation, that is, the maximum can only send 65500byt, maybe some people will ask why it is limited to 65500byt, because Windows series of systems have a security vulnerability (perhaps including other systems) is that when the packets sent to the other side is greater than or equal to 65532, the other side is very likely to crash, so Microsoft in order to solve this security vulnerability so limit the ping packet size. Although Microsoft has done this limitation, but this parameter with other parameters after the harm is still very powerful, for example, we can cooperate with the -t parameter to achieve an offensive command. With -t, it will keep sending packets to **. **. **. ** computer to send the size of 65500byt packets, if you only have a computer may not have any effect, but if there are many computers then you can make the other side completely paralyzed, I have done this test, when I use more than 10 computers at the same time ping a Win2000Pro system of computers, less than 5 minutes the other side of the network has been completely paralyzed, the network seriously blocked. paralyzed, the network is seriously blocked, HTTP and FTP services completely stopped, which shows the power of non-trivial.
PingtoDeath network attacks work
Today’s class just learned, belonging to the tcp protocol under the dos attack inside a, the use of the ping command to keep sending a very large packet, the host response is to take time to drop, so the more packets sent, the larger, the host of the corresponding time is longer (the largest packet is 65500)! If you hit the computer with a large number of connection requests at the same time, you can make the available resources are consumed, and ultimately the computer can no longer handle legitimate user requests, the purpose of the attack is achieved. One or two people alone launching an attack, it does not work, but the attacker can see (in the task manager inside the “networking” under the “local connection” of the “network applications”) Network Applications” under “Local Connections” in Task Manager, the utilization rate is very large when someone attacks, I didn’t notice how large it is). So you need a lot of people to launch an attack at the same time to be effective! In layman’s terms: that is, a lot of people at the same time ping packets, has been the other side to get hung! Oh. Usage: run – cmd – enter the command “ping-l65550 to attack the target ip-t” – enter. But now this attack is used very little. The most popular is DDoS attack.
Here’s some information from the Internet:
The target IP is constantly pinged, thus paralyzing the network of the target host. Common tools include snail bombs, AhBomb, and so on.
Since in the early stages, routers have restrictions on the maximum size of the packet, many operating systems on the implementation of the TCP/IP stack on the ICMP packet are specified 64KB, and after the header header of the packet is read, according to the information contained in that header header to generate a buffer for the payload, when generating malformed, claiming that the size of the packet exceeds the upper limit of the ICMP also That is, when the size of the load exceeds the 64K limit, a memory allocation error occurs, causing the TCP/IP stack to crash, resulting in the recipient crashing.
Defense: All standard TCP/IP implementations have now been implemented to deal with oversized packets, and most firewalls are capable of automatically filtering these attacks, including: windows NT from windows 98 onwards (servicepack3 onwards), Solaris, and MacOS have the ability to withstand the usual pingofdeath attacks. pingofdeath attacks. In addition, firewalls are configured to block ICMP and any unknown protocols to prevent such attacks.
ping-t-l65500ip ping of death (sending a file larger than 64K and pinging it all the time is ping of death)
How to use death ping ah
1, first of all, press the windows key + R key to summon the run box.
2, next you need to type cmd in the input field, press enter to determine.
3, next you can open cmd.exe.
4, type ping and the website or ip you want to ping.
5, next press enter and it’s ok.