{"id":44203,"date":"2015-04-20T07:00:00","date_gmt":"2015-04-20T21:00:00","guid":{"rendered":"https:\/\/blogs.msdn.microsoft.com\/oldnewthing\/2015\/04\/20\/how-to-find-the-ip-address-of-a-hacker-according-to-csi-cyber\/"},"modified":"2021-07-20T14:11:01","modified_gmt":"2021-07-20T21:11:01","slug":"20150420-00","status":"publish","type":"post","link":"https:\/\/devblogs.microsoft.com\/oldnewthing\/20150420-00\/?p=44203","title":{"rendered":"How to find the IP address of a hacker, according to CSI: Cyber"},"content":{"rendered":"

The episode of the television documentary CSI: Cyber<\/i><\/a> which aired on CBS last Wednesday<\/a> demonstrated an elite trick to obtaining a hacker’s IP address: Extract it from the email header.<\/p>\n

Here’s a screen shot from time code 14:35 that demonstrates the technique.<\/p>\n

\r\n<meta id=\"<\/span>viewport<\/span>\"<\/span> content=\"\"<\/span> name=\"<\/span>viewport<\/span>\"<\/span>><\/m<\/span>\r\n<link href=\"<\/span>y\/images\/favicon.ico<\/span>\"<\/span> rel=\"<\/span>shortcut ic<\/span><\/span>\r\n<link href=\"<\/span>y\/styles.css?s=1382384360<\/span>\"<\/span> type=\"<\/span>text\/<\/span><\/span>\r\n<link href=\"<\/span>y\/mail.css?s=1382384360<\/span>\"<\/span> type=\"<\/span>text\/cs<\/span><\/span>\r\n<hidden: ip: 951.27.9.840 > < echo;off;>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0<\/span>\r\n<!--if lte IE 8><link rel=\"stylesheet\" type=\"text\/<\/span>\r\n<!--if lte IE 7><link rel=\"stylesheet\" type=\"text\/<\/span>\r\n<link href=\"<\/span>plugins\/jqueryui\/themes\/larry\/jquery-u<\/span><\/span>\r\n<link href=\"<\/span>plugins\/jqueryui\/themes\/larry\/ui.js?s=<\/span><\/span>\r\n<\/pre>\n
This technique is so awesome I had to share it.<\/p>\n
<\/p>\n
 <\/p>\n","protected":false},"excerpt":{"rendered":"
According to television.<\/p>\n","protected":false},"author":1069,"featured_media":111744,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1],"tags":[103],"class_list":["post-44203","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-oldnewthing","tag-non-computer"],"acf":[],"blog_post_summary":"
According to television.<\/p>\n","_links":{"self":[{"href":"https:\/\/devblogs.microsoft.com\/oldnewthing\/wp-json\/wp\/v2\/posts\/44203","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/devblogs.microsoft.com\/oldnewthing\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/devblogs.microsoft.com\/oldnewthing\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/oldnewthing\/wp-json\/wp\/v2\/users\/1069"}],"replies":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/oldnewthing\/wp-json\/wp\/v2\/comments?post=44203"}],"version-history":[{"count":0,"href":"https:\/\/devblogs.microsoft.com\/oldnewthing\/wp-json\/wp\/v2\/posts\/44203\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/oldnewthing\/wp-json\/wp\/v2\/media\/111744"}],"wp:attachment":[{"href":"https:\/\/devblogs.microsoft.com\/oldnewthing\/wp-json\/wp\/v2\/media?parent=44203"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/oldnewthing\/wp-json\/wp\/v2\/categories?post=44203"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/oldnewthing\/wp-json\/wp\/v2\/tags?post=44203"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}