How to Log and Analyse a DDoS attack with WireShark

Record a pcap dump via tcpdump to a file…

tcpdump -s 0 -w ddos.pcap -nvi eno1

Download the file, and ‘Open’ with ‘WireShark’

Click ‘Statistics’ -> IPv4 Statistics -> All Addresses
Was this article helpful?
Cancel
Thank you!