Windows 7 Ping Command

DDoS means "distributed". You can't do that with just one PC.

Some years back you could kill devices with the "ping of death" - an ICMP packet with more than the maximum legal 65536 data bytes - but not anymore since everyone fixed their TCP/IP stacks.



I presume ping creates packets on the fly given the options on the command line. You could find the source code for Linux ping easily enough at http://www.skbuff.net/iputils



Microsoft stopped allowing ICMP through Windows firewall for some stupid reason. It makes it harder for companies to police their own networks if devices don't respond to ICMP ECHO (ping) and doesn't really make anything more secure. Ping is pretty harmless - it's handled directly by the operating system network stack and doesn't involve any applications or disk access, so all you can do is block someones network if you had substantial resources and they had a low-bandwidth link. Much easier to do some resource-hungry request like a wildcard SQL query over the Web to a badly-written application.



Yes you can change the data bytes included in ping packets, but so what ? Someone suggested that someone could use ping to secretly export data through a firewall, but that only works if you don't think of it, like passing drug packets down the sewer. Blocking the sewer pipes is not the answer.



You can find the definition of ICMP packets at IETF.

If you don't follow the rules, the packet will probably be discarded. If you do follow the rules, it's harmless. The ping-of-death worked because the attacker didn't quite follow the rules, and the victim's operating system assumed that all network devices were innocent and trustworthy and didn't (at that time) check the incoming packets properly.

It is impossible. Because some hosting close the router tracing.