methods.json

{
  "spoofed_ip_attacks": {
    "OVH-BYPASS/1": "fefefefe",
    "OVH-BYPASS/2": "4a4a4a4a",
    "Flood of 0xFF": "fffffffffff",
    "Flood of 0x00": "0000000000000000000",
    "UDP getstatus Flood": "676574737461747573",
    "OVH-BYPASS/UDP-HEX": "4f56482d424f544e4554",
    "OVH-BYPASS/VSE": "ffffffff56534572636520456e67696e6520517565727900"
  },
  "valid_ip_attacks": {
    "Mirai Variant/1": "476f6f64627965",
    "Mirai Variant/2": "41414141",
    "Qbot/1": "51424f542d4e4554",
    "Legion UDP": "4c4547494f4e",
    "Chaos UDP": "4348414f5320425950415353",
    "TCP SYN Flood/Custom-MSS": "0x0200000005b4",
    "TCP SYN Flood/Window-Scale": "0x0200000c0714",
    "TeamSpeak Status Flood": "545333494e49",
    "VSE Flood/1": "17\t\t27015",
    "UDPMIX DNS Flood": "7065616365636f7270",
    "Hex UDP Flood": "2f78",
    "Known Botnet UDP Flood/1": "52794d47616e67",
    "Known Botnet UDP Flood/2": "a6c300",
    "OpenVPN Reflection": "17\t\t1194",
    "RRSIG DNS Query Reflection": "002e0001",
    "ANY DNS Query Reflection": "00ff0001",
    "NTP Reflection": "17\t\t123",
    "Chargen Reflection": "17\t\t19",
    "MDNS Reflection": "17\t\t5353",
    "BitTorrent Reflection": "17\t\t6881",
    "CLDAP Reflection": "17\t\t389",
    "STUN Reflection": "17\t\t3478",
    "MSSQL Reflection": "17\t\t1434",
    "SNMP Reflection": "17\t\t161",
    "WSD Reflection": "17\t\t3702",
    "DTLS Reflection": "17\t\t443\t\t40",
    "OpenAFS Reflection": "17\t\t7001",
    "ARD Reflection": "17\t\t3283",
    "BFD Reflection": "17\t\t3784",
    "SSDP Reflection": "17\t\t1900",
    "ArmA Reflection/1": "17\t\t2302",
    "ArmA Reflection/2": "17\t\t2303",
    "vxWorks Reflection": "17\t\t17185",
    "Plex Reflection": "17\t\t32414",
    "TeamSpeak Reflection": "17\t\t9987",
    "Lantronix Reflection": "17\t\t30718",
    "DVR IP Reflection": "17\t\t37810",
    "Jenkins Reflection": "17\t\t33848",
    "Citrix Reflection": "17\t\t1604",
    "NAT-PMP Reflection": "008000",
    "Memcache Reflection": "17\t\t11211",
    "NetBIOS Reflection": "17\t\t137",
    "SIP Reflection": "17\t\t5060",
    "Digiman Reflection": "17\t\t2362",
    "Crestron Reflection": "17\t\t41794",
    "CoAP Reflection": "17\t\t5683",
    "BACnet Reflection": "17\t\t47808",
    "FiveM Reflection": "17\t\t30120",
    "Modbus Reflection": "17\t\t502",
    "QOTD Reflection": "17\t\t17",
    "ISAKMP Reflection": "17\t\t500",
    "XDMCP Reflection": "17\t\t177",
    "IPMI Reflection": "17\t\t623",
    "Apple serialnumberd Reflection": "17\t\t626",
    "TCP Reflection from HTTPS/1": "0x00000012\t\t443",
    "TCP Reflection from HTTPS/2": "0x00000010\t\t443",
    "TCP Reflection from HTTP/1": "0x00000012\t\t80",
    "TCP Reflection from HTTP/2": "0x00000010\t\t80",
    "TCP Reflection from BGP/1": "0x00000012\t\t179",
    "TCP Reflection from BGP/2": "0x00000010\t\t179",
    "TCP Reflection from SMTP/1": "0x00000012\t\t465",
    "TCP Reflection from SMTP/2": "0x00000010\t\t465",
    "Apple serial number Reflection": "17\t\t626",
    "TSource Engine Query": "54536f75726365"
  },
  "other_attacks": {
    "ICMP": "1\t\t",
    "ICMP Dest Unreachable": "1,17\t\t",
    "GRE": "47\t\t",
    "IPX": "111\t\t",
    "AH": "51\t\t",
    "ESP": "50\t\t",
    "TCP SYN-ACK": "0x00000012",
    "TCP PSH-ACK": "0x00000018",
    "TCP RST-ACK": "0x00000014",
    "TCP FIN": "0x00000001",
    "TCP SYN": "0x00000002",
    "TCP PSH": "0x00000008",
    "TCP URG": "0x00000020",
    "TCP RST": "0x00000004",
    "TCP ACK": "0x00000010",
    "Unset TCP Flags": "0x00000000",
    "TCP SYN-ECN-CWR": "0x000000c2",
    "TCP SYN-ECN": "0x00000042",
    "TCP SYN-CWR": "0x00000082",
    "TCP SYN-PSH-ACK-URG": "0x0000003a",
    "TCP SYN-ACK-ECN-CWR": "0x000000d2",
    "TCP PSH-ACK-URG": "0x00000038",
    "TCP FIN-SYN-RST-PSH-ACK-URG": "0x0000003f",
    "TCP RST-ACK-URG-CWR-Reserved": "0x000004b4",
    "TCP SYN-PSH-URG-ECN-CWR-Reserved": "0x000004ea",
    "TCP FIN-RST-PSH-ECN-CWR-Reserved": "0x00000ccd",
    "TCP FIN-RST-PSH-ACK-URG-ECN-CWR-eserved": "0x00000cfd"
  }
}