Definition of IP Spoofing:
Spoofing is the impersonation of a user, device or customer on the Internet. It is often used in network attacks to mask the source of attack traffic.
The most common forms of deception include:
DNS Server Spoofing – Modification of DNS servers in order to redirect domain names to different IP addresses. It is often used to spread viruses.
ARP spoofing - Linking an attacker's MAC address to a legitimate address through fake ARP messages. Typically used for Denial of Service (DoS) and man-in-the-middle attacks.
IP address spoofing - masking the attacker's original address. Often used in DoS attacks.
IP Address Spoofing in DDoS Attacks In DDoS Attacks, IP address spoofing is used for two reasons: to cover up the location of botnet facilities and to launch reflection attacks.
Attackers use fake IP addresses to mask the true identity of their botnet installations with the aim of:
Avoid detection and implication by law enforcement agencies and forensic cyber investigators, prevent targets from notifying device owners of attacks they are carrying out, bypass security scripts, facilities and security scripts that attempt to mitigate DDoS attacks by blacklisting attacking IP addresses Serve.