To determine what kinds of services were targeted, we
look up the categorization of attacked HTTP URLs using
Websense’s classification technology. Out of 1707
attacks on web servers, 1011 URLs (59.2%) could be
successfully categorized. Out of the 696 uncategorized
URLs, 386 were attacks on IP addresses. Since reverse
DNS lookups are unreliable and often do not contain
valuable information to classify a given domain, we
opted to not study these IP addresses further. Table 2
provides an overview of the category of DDoS victims.