The ALPACA Attack

ALPACA Impressum and Privacy Statement


This website is provided by Marcus Brinkmann. We do not collect any data, but we are making use of three third-party services that do. First, our site is hosted by GitHub Pages, a service provided by GitHub, Inc., 88 Colin P Kelly Jr St, San Francisco, CA 94107, USA. According to the GitHub Privacy Statement, GitHub may collect User Personal Information from visitors to your GitHub Pages website, including logs of visitor IP addresses, to comply with legal obligations, and to maintain the security and integrity of the Website and the Service. Second, our site is optimized and protected by Cloudflare, Inc., 101 Townsend St. San Francisco, CA 94107, USA. Cloudflare collects data when accessing our website, including IP addresses, system configuration information, and other information about traffic to and from the website to operate, maintain, and improve these services in performance of their obligations to us under the Cloudflare Privacy Policy. For example, this data can help Cloudflare to detect new threats, identify malicious third parties, and provide more robust security protection for us. If you have any questions, comments, or concerns about this Privacy Statement or the information practices of this site, please contact us:

Ruhr Uni­ver­si­ty Bo­chum
Chair for Network and Data Security
Uni­ver­si­täts­stras­se 150
ID 2 / 415
44780 Bo­chum / Ger­ma­ny

Phone: +49-234-32-26693 (Secreta­ry's of­fice)
Fax: +49-234-32-14347
E-mail: [email protected]

Responsible for the content:

Marcus Brinkmann (Horst Görtz Institute for IT security, Ruhr University Bochum)
Christian Dresen (University of Applied Sciences Münster
Robert Merget (Horst Görtz Institute for IT security, Ruhr University Bochum)
Damian Poddebniak (University of Applied Sciences Münster
Jens Müller (Horst Görtz Institute for IT security, Ruhr University Bochum)
Juraj Somorovsky (Paderborn University)
Jörg Schwenk (Horst Görtz Institute for IT security, Ruhr University Bochum)
Sebastian Schinzel (University of Applied Sciences Münster

TERMS AND DISCLAIMERS: We are providing this service to help system administrators initially assess and begin to correct vulnerable services. However, due to the limitations of our data and testing methodology, these results may be incomplete and may fail to indicate every vulnerable server, or they may falsely indicate non-vulnerable servers as vulnerable. They are based on data that is collected and processed in bulk, so they may be out of date and display services as vulnerable after the operators have mitigated the problem. By using this service, you agree to use it only for lawful purposes. Your access to and use of the service is at your own risk. You understand and agree that the service is provided to you on an "AS IS" basis. THE AUTHORS DISCLAIM ANY WARRANTIES, EXPRESS OR IMPLIED, OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, OR NON-INFRINGEMENT.