In the past I had to do several DoS security audits, with mĂșltiples types of tests and intensities. Sometimes several DDoS protections were present like Akamai for static content, and Arbor for absorb part of the bandwith.
One consideration for the DoS/DDoS tools is that probably it will loss the control of the attacker host, and the tool at least has to be able to stop automatically with a timeout, but can also implement remote response checks.
In order to size the minimum mbps needed to flood a service or to retard the response in a significant amount of time, the attacker hosts need a bandwith limiter, that increments in a logarithmic way up to a limit agreed with the customer/isp/cpd.
There are DoS tools that doesn't have this timeouts, and bandwith limit based on mbps, for that reason I have to implement a LD_PRELOAD based solution: bwcontrol
Although there are several good tools for stressing web servers and web aplications like apache ab, or other common tools used for pen-testing, but I also wrote a fast web flooder in c++ named wflood.
As expected the most effective for taking down the web server are the slow-loris, slow-read and derivatives, few host were needed to DoS an online banking.
Remote attacks to database and highly dynamic web content were discarded, that could be impacted for sure.
I did another tool in c++ for crafting massive tcp/udp/ip malformed packets, that impacted sometimes on load balancers and firewalls, it was vulcan, it freezed even the firewall client software.
The funny thing was that the common attacks against Akamai hosts, where ineffective, and so does the slow-loris family of attacks, because are common, and the Akamai nginx webservers are well tunned. But when tried vulcan, few intensity was enough to crash Akamai hosts.
Another attack vector for static sites was trying to locate the IP of the customer instead of Akamai, if the customer doesn't use the Akamai Shadow service, it's possible to perform a HTTP Host header scan, and direct the attack to that host bypassing Akamai.
And what about Arbor protection? is good for reducing the flood but there are other kind of attacks, and this protection use to be disabled by default and in local holidays can be a mess.
Related news
- Hacker Tools Online
- Pentest Tools Find Subdomains
- Hacker Security Tools
- Pentest Tools Nmap
- New Hacker Tools
- Hacker Tools For Pc
- Hacker Tools Linux
- Pentest Tools For Android
- Pentest Tools For Android
- Hack Tools 2019
- Hacker Tools Free
- Hacker Tools For Pc
- Hack App
- Growth Hacker Tools
- Computer Hacker
- Pentest Tools
- Pentest Reporting Tools
- Hacking Tools For Windows 7
- Best Hacking Tools 2019
- Pentest Tools For Windows
- Hacker Tools Windows
- How To Hack
- Hacking Apps
- Beginner Hacker Tools
- Hacking Tools
- Hacker Hardware Tools
- Best Pentesting Tools 2018
- Hacker Tools 2020
- Hack Tools Online
- Hack Apps
- Hacking Tools For Kali Linux
- Hacking Tools For Kali Linux
- Pentest Tools Port Scanner
- Hacker Tools 2019
- Pentest Tools Alternative
- Hack Tools
- Github Hacking Tools
- Hacking Tools 2020
- What Are Hacking Tools
- Hacker Tools 2019
- Hack Tools Mac
- Hack Tools For Ubuntu
- Pentest Tools Framework
- Hacker
- Pentest Tools Framework
- Hak5 Tools
- Hacking Tools Download
- Pentest Tools For Android
- Top Pentest Tools
- Pentest Tools Port Scanner
- Hack Tools 2019
- Hacking Tools Windows
- Top Pentest Tools
- Android Hack Tools Github
- Hacking Tools Software
- Pentest Tools Url Fuzzer
- Hacking Tools Windows 10
- Hack Tools Mac
- Growth Hacker Tools
- Growth Hacker Tools
- Pentest Box Tools Download
- Hacking Tools Mac
- Tools Used For Hacking
- Hacking Tools For Windows
- Hacker Tools Software
- Tools Used For Hacking
- Bluetooth Hacking Tools Kali
- Hacking Tools For Windows Free Download
- Hacking Tools For Pc
- Pentest Tools Free
- Pentest Tools For Windows
- Hacker Tools Apk
- Hacker Hardware Tools
- Hacking Tools Download
- Pentest Tools Open Source
- Pentest Tools Subdomain
- Hacker Tools 2020
- Hacker Tool Kit
- Pentest Tools Linux
- Top Pentest Tools
- Hacking Tools For Pc
- Hacker Tool Kit
- Hack Tools For Ubuntu
- Computer Hacker
- New Hacker Tools
- Hack Tools For Mac
- Nsa Hack Tools
- Pentest Tools Subdomain
- Pentest Tools
- Pentest Tools Find Subdomains
- Hacker Tools Apk
- Hack Tools Online
- Hack Tools For Pc
- Hacking App
- Pentest Tools List
- Hack Tools For Pc
- Pentest Tools Windows
- Termux Hacking Tools 2019
- Top Pentest Tools
- Nsa Hack Tools
- Hacking Apps
- Pentest Tools Alternative
- Pentest Tools Review
- Hacking App
- Hacker Tools List
- Hacker Tools Online
- Hack Tools Download
- Hacker Tools Linux
- Hacking Tools For Games
- Hacking Tools Windows
- Hacker Tools Hardware
- Pentest Tools Find Subdomains
- Pentest Reporting Tools
- Pentest Tools Open Source
- Physical Pentest Tools
- Hack Tools Pc
- Install Pentest Tools Ubuntu
- Nsa Hack Tools
- Hacks And Tools
- Pentest Tools Review
- World No 1 Hacker Software
- Beginner Hacker Tools
- Hack And Tools
- Pentest Tools Bluekeep
- Nsa Hacker Tools
- Pentest Tools Apk
- Pentest Tools Nmap
- Pentest Tools For Android
- Termux Hacking Tools 2019
- Hacking Tools Windows 10
- Pentest Tools Apk
- Hacker Tools Free Download
- Hack Tools Pc
- Top Pentest Tools
- Github Hacking Tools
- Pentest Tools For Windows
- Hack App
- Pentest Tools For Windows
- Physical Pentest Tools
- Hacking Tools For Mac
- Pentest Tools For Android
- Pentest Tools Linux
- Pentest Tools Online
- Hacking Tools Mac
- Game Hacking
- Hacker Search Tools
- Hack Tools Mac
- Hacking Tools Download
- Hacking Tools Windows 10
- Hackrf Tools
- Hacker Tools Apk
- Hacker Tools Apk Download
- New Hacker Tools
- Hack Apps
- Black Hat Hacker Tools
- Hack Tools Download
- Blackhat Hacker Tools
- Hacking Apps
- Pentest Tools Review
- How To Hack
- Pentest Tools Tcp Port Scanner
- Hack Tools 2019
- Hacking Tools For Kali Linux
- Best Hacking Tools 2020
- Hacks And Tools
- Hacking Tools Free Download
- Pentest Tools For Mac
- Hack Tool Apk
- Hacking Tools For Windows Free Download
- How To Make Hacking Tools
- Beginner Hacker Tools
- Blackhat Hacker Tools
- Pentest Tools