It appears a SYN-flood style DDoS has been carried out on this system. Send us a list of the IP addresses of the attackers (in any order, separated by spaces), so we can track them down and stop them. Pcap available to download here[1], or available to analyse online at CloudShark[2] Hint: What's a defining pattern in a syn flood attack[3]? [1]https://2013.picoctf.com/problems/syn_attack.pcap [2]https://www.cloudshark.org/captures/88971318a309 [3]http://en.wikipedia.org/wiki/SYN_flood