Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1492
Views
0
Helpful
1
Replies

how to find hacker

chfgao
Level 1
Level 1

‎11-06-2003 07:00 PM - edited ‎03-10-2019 07:33 AM

Some one modified his workstation' MAC and rebooted his machine.Then he again modified his machine's MAC to original one after he intruded into my computer. My IDS recorded his ip and MAC. How to find which house the hacker's computer was? After the hacker has disconnected,can I find which port of switch his machine used to connect?

Labels:
0 Helpful
1 Reply 1

lwierenga
Level 1
Level 1

‎11-09-2003 07:20 PM

You will have to give more information on the situation, because it sounds like this is community housing or a dorm? Here is the problem, if the attacker that compromised your system is good enough to get in, then he probably wouldn't be using his IP address, as opposed to spoofing this address. If you have his MAC address then you can compare this address with the addresses in arp table of the switch. Use the sh arp command. If this answers your question, then please close and rate. Thanks

0 Helpful
Customers Also Viewed These Support Documents