In the past I had to do several DoS security audits, with mĂșltiples types of tests and intensities. Sometimes several DDoS protections were present like Akamai for static content, and Arbor for absorb part of the bandwith.
One consideration for the DoS/DDoS tools is that probably it will loss the control of the attacker host, and the tool at least has to be able to stop automatically with a timeout, but can also implement remote response checks.
In order to size the minimum mbps needed to flood a service or to retard the response in a significant amount of time, the attacker hosts need a bandwith limiter, that increments in a logarithmic way up to a limit agreed with the customer/isp/cpd.
There are DoS tools that doesn't have this timeouts, and bandwith limit based on mbps, for that reason I have to implement a LD_PRELOAD based solution: bwcontrol
Although there are several good tools for stressing web servers and web aplications like apache ab, or other common tools used for pen-testing, but I also wrote a fast web flooder in c++ named wflood.
As expected the most effective for taking down the web server are the slow-loris, slow-read and derivatives, few host were needed to DoS an online banking.
Remote attacks to database and highly dynamic web content were discarded, that could be impacted for sure.
I did another tool in c++ for crafting massive tcp/udp/ip malformed packets, that impacted sometimes on load balancers and firewalls, it was vulcan, it freezed even the firewall client software.
The funny thing was that the common attacks against Akamai hosts, where ineffective, and so does the slow-loris family of attacks, because are common, and the Akamai nginx webservers are well tunned. But when tried vulcan, few intensity was enough to crash Akamai hosts.
Another attack vector for static sites was trying to locate the IP of the customer instead of Akamai, if the customer doesn't use the Akamai Shadow service, it's possible to perform a HTTP Host header scan, and direct the attack to that host bypassing Akamai.
And what about Arbor protection? is good for reducing the flood but there are other kind of attacks, and this protection use to be disabled by default and in local holidays can be a mess.
Related posts
- Hackrf Tools
- Hack Tool Apk
- Pentest Tools Free
- Hack Tools Online
- Hacking Tools Github
- Blackhat Hacker Tools
- Top Pentest Tools
- Pentest Tools Website
- How To Make Hacking Tools
- Pentest Tools Website
- Hacking Tools Name
- Pentest Tools Github
- Hacking Tools Free Download
- Pentest Tools Open Source
- Pentest Tools Port Scanner
- Ethical Hacker Tools
- Hacking Tools Software
- Hacking Tools Name
- Hacking Tools For Pc
- How To Hack
- Hack Tools 2019
- Hacker Tools Apk Download
- Hacking Tools Software
- Hacking Tools 2019
- Top Pentest Tools
- Hacker Tools 2020
- Hack Tool Apk
- Hacking Tools Name
- Pentest Tools Find Subdomains
- Pentest Tools For Windows
- Hacking Tools For Pc
- Hacking Tools For Windows Free Download
- Hacking Tools For Windows 7
- How To Hack
- Hacking Tools Free Download
- Hacker Tools For Mac
- Pentest Automation Tools
- Hacking Tools For Windows
- Hak5 Tools
- Hacker Tools For Ios
- Github Hacking Tools
- What Are Hacking Tools
- Pentest Tools Bluekeep
- Pentest Tools Free
- How To Make Hacking Tools
- Hackrf Tools
- Pentest Tools Subdomain
- Bluetooth Hacking Tools Kali
- Hacking Tools For Pc
- Pentest Tools Url Fuzzer
- Hacking Apps
- Hacker Tools Github
- Hacking Tools Windows
- Best Pentesting Tools 2018
- Hacker Tools Linux
- Nsa Hack Tools
- Hacker Security Tools
- Pentest Tools Bluekeep
- Best Hacking Tools 2020
- Pentest Tools For Ubuntu
- Pentest Tools Free
- Hak5 Tools
- Nsa Hacker Tools
- Hacker Tools Windows
- Nsa Hack Tools Download
- Tools Used For Hacking
- Hacker Tools For Windows
- Top Pentest Tools
- Hacker Tools Hardware
- Hacker Tools For Windows
- Pentest Tools Alternative
- Android Hack Tools Github
- Pentest Tools Port Scanner
- Hacker Tools For Pc
- Pentest Tools For Mac
- Pentest Recon Tools
- Hacking App
- Hacking Tools For Windows 7
- Hack App
- Nsa Hack Tools
- Pentest Tools Android
- Hacker Tools
- Hack Website Online Tool
- Tools For Hacker
- Github Hacking Tools
- Hack Tools Mac
- Hack Tools For Pc
- Hacking Tools 2019
- Hack Tools Mac
- Ethical Hacker Tools
- Hack Tools Mac
- Hacking Apps
- Computer Hacker
- What Are Hacking Tools
- Hack Tools Mac
- Free Pentest Tools For Windows
- Hackrf Tools
- What Is Hacking Tools
- Pentest Tools
- Pentest Tools For Ubuntu
![[THE LATEST] Inside hell's kitchen đ©đœâđł](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_v80o4R_K2QUqD1TC90qJx3uSBbRYETwuOGYxUK0dwxCIfrO2Y2zo90YkiB9t3u2kcSDEQtaHx02Lw8gE1jsS22Gy9U75BfRzVWp9ut6l3bKKoju5zZOs7NGSSeSXOypV9q8u5F61zZRLmXz44-HFpH3DLIMb5Cmtz_1bJx_Y1A5jbF844FnTyN2olh3N9q9P2y8iTHiVPwydCNDdBvyGd6h1sBQqFtaU8DwluEmgWjPZKHLJE72Ft9tzJREihrK45gPxXy69MhOjRlngMF4Wk=w72-h72-p-k-no-nu)
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.