There's also the actual DDoS list on the GrayHat Academy account on Github, with Liz and Kevin both being listed contributors with code commits in the public log.
I was going to point this out before the site went down and the thread got locked, but
those lists (
archives) aren't "DDoS lists," and claiming that they are makes you sound like a schizo. They're just standard Spamhaus-inspired blocklists for people to use on their systems/networks to prevent them from reaching the listed destinations. Kevin literally put Cloudflare itself on there with the justification that it was providing services to Kiwi Farms.
I get that Kevin is a mondo sped, but do you really think he's so retarded that he'd threaten to DDoS a professional DDoS mitigation company? And if he was, do you think that Cloudflare would actually feel threatened by that? Do you think they'd just bend the knee rather than taking 5 minutes to visit the site linked in his Twitter bio, see that he posted his full dox as part of his resume, and then calling the cops on him for making criminal threats to their company? Come on.
The reality of the situation is infinitely funnier. Some autistic tranny-loving brony nobody
tweeted up a storm for multiple days trying to get Cloudflare to drop Kiwi Farms by threatening to put them on his personal blocklist that literally nobody uses or cares about. Dude's on the same level as Chris Chan trying to motivate people by telling them they'll move up two levels on his personal respect list if they do what he wants. It's just completely impotent tardrage.
Look, I have no problem believing that Kevin and Liz and whomever else have been colluding and fucking around to try to get the site taken down. I'm just telling you that particular list is a standard-ass looking blocklist and calling it a "DDoS list" is some clown shit. All he even has on there are publicly-listed IP addresses and ASNs that would take basically zero time for anyone capable of a DDoS to find.
If the list was really meant to facilitate or threaten a DDoS, I'd expect to see significantly more information about the network infrastructure of each target on the list. Which IP addresses are associated with critical resources and thus more valuable to hit? What ports should you hit them on? Which types of DDoS attacks are those systems vulnerable to? Which ones are a complete waste of time? The list doesn't have anything like that, and if it was meant to be used for a DDoS then it really should, because the whole point is to have a bunch of resources hitting the site where it hurts at the same time. You don't want a bunch of tards running around doing recon because you only gave them a list of IPs, it'd be a complete waste of time and resources.
tl;dr - calling that a "DDoS list" is the same caliber of histrionic tard shit as the trannies calling Kiwi Farms a anti-transgender terrorist cell or whatever. Please put down the crack pipe and stop chimping out over nothing like a tranny.
