Donations

BTC: bc1qxv3stg0xha9upurf7h4aqnmg3xjn3h0zk28kpe

ETH: 0x01870296774Fb0A2DbF9b44d2E6a57fb8Ccea070

LTC: LQ44CP6xDDkX5bAiKd3yqmDB4c23U7orrQ

DOGE: DCpu9v1bkTXj8VKUDG97LHdV2qipDPyZsR

ADA: addr1qx4q7348dv2ju5zshee9ru23ssmqhyyjlnxe0xlezjq5we42par2w6c49eg9p0nj28c4rppkpwgf9lxdj7dlj9ypganqtmuu2p

domingo, 28 de maio de 2023

Vulcan DoS Vs Akamai

Posted by Carlos Morato on 13:56
0
In the past I had to do several DoS security audits, with múltiples types of tests and intensities. Sometimes several DDoS protections were present like Akamai for static content, and Arbor for absorb part of the bandwith.

One consideration for the DoS/DDoS tools is that probably it will loss the control of the attacker host, and the tool at least has to be able to stop automatically with a timeout, but can also implement remote response checks.

In order to size the minimum mbps needed to flood a service or to retard the response in a significant amount of time, the attacker hosts need a bandwith limiter, that increments in a logarithmic way up to a limit agreed with the customer/isp/cpd.

There are DoS tools that doesn't have this timeouts, and bandwith limit based on mbps, for that reason I have to implement a LD_PRELOAD based solution: bwcontrol

Although there are several good tools for stressing web servers and web aplications like apache ab, or other common tools used for pen-testing, but I also wrote a fast web flooder in c++ named wflood.

As expected the most effective for taking down the web server are the slow-loris, slow-read and derivatives, few host were needed to DoS an online banking. 
Remote attacks to database and highly dynamic web content were discarded, that could be impacted for sure.

I did another tool in c++ for crafting massive tcp/udp/ip malformed packets, that impacted sometimes on load balancers and firewalls, it was vulcan, it freezed even the firewall client software.

The funny thing was that the common attacks against Akamai hosts, where ineffective, and so does the slow-loris family of attacks, because are common, and the Akamai nginx webservers are well tunned. But when tried vulcan, few intensity was enough to crash Akamai hosts.

Another attack vector for static sites was trying to locate the IP of the customer instead of Akamai, if the customer doesn't use the Akamai Shadow service, it's possible to perform a HTTP Host header scan, and direct the attack to that host bypassing Akamai.

And what about Arbor protection? is good for reducing the flood but there are other kind of attacks, and this protection use to be disabled by default and in local holidays can be a mess.

More info


  1. New Hacker Tools
  2. Hacker Tools Apk Download
  3. Termux Hacking Tools 2019
  4. Hack Tools Mac
  5. Hack Tools For Windows
  6. Pentest Tools
  7. Hack Tool Apk No Root
  8. Hack Tools 2019
  9. Hacking Tools For Windows Free Download
  10. Hack Tools Online
  11. Pentest Tools Android
  12. Install Pentest Tools Ubuntu
  13. Pentest Tools Free
  14. Beginner Hacker Tools
  15. Pentest Automation Tools
  16. Hacker Tools
  17. Hack Tools For Games
  18. Pentest Tools For Android
  19. Free Pentest Tools For Windows
  20. Hacking App
  21. Hack Tools Mac
  22. Hacking Tools For Mac
  23. Pentest Tools Nmap
  24. Pentest Tools Alternative
  25. Pentest Tools Url Fuzzer
  26. Hacker Tools
  27. Pentest Tools Website Vulnerability
  28. Hacking Tools 2020
  29. Android Hack Tools Github
  30. Pentest Tools For Android
  31. Hacking Tools Mac
  32. Bluetooth Hacking Tools Kali
  33. Hacker
  34. Hacker Tools Software
  35. Hacker Tools Software
  36. Tools Used For Hacking
  37. Hack Tools For Ubuntu
  38. World No 1 Hacker Software
  39. Hack Tools
  40. Hacking Tools Windows 10
  41. Underground Hacker Sites
  42. Hacker Tools Apk Download
  43. Hacking Tools And Software
  44. Best Hacking Tools 2020
  45. Pentest Tools Linux
  46. Hacker Tools For Windows
  47. Hacking Tools Hardware
  48. Hack Tools Online
  49. Hack And Tools
  50. Hacking App
  51. Pentest Tools Subdomain
  52. Hack Website Online Tool
  53. Termux Hacking Tools 2019
  54. Hacking Tools Github
  55. Hack Tool Apk
  56. Pentest Tools Open Source
  57. New Hack Tools
  58. How To Make Hacking Tools
  59. Hacking Tools Pc
  60. Hacker Tools Apk Download
  61. Pentest Tools Online
  62. Hacking Tools Pc
  63. Hack Tools Github
  64. Pentest Tools Alternative
  65. Pentest Recon Tools
  66. Hackers Toolbox
  67. Pentest Tools Free
  68. Pentest Tools Kali Linux
  69. Hacking Tools Mac
  70. Hack App
  71. Computer Hacker
  72. Hacking Tools 2019
  73. Best Hacking Tools 2020
  74. Hacking Tools For Mac
  75. Wifi Hacker Tools For Windows
  76. Android Hack Tools Github
  77. What Are Hacking Tools
  78. Hacker Tools Windows
  79. Hack Tools For Windows
  80. Hack Tools For Games
  81. Wifi Hacker Tools For Windows
  82. Hacking Tools Hardware
  83. Pentest Tools Download
  84. Hack Tools
  85. Hacking Tools Windows 10
  86. Pentest Tools Download
  87. Hacker Tools For Pc
  88. Hacker Tools Mac
  89. Hacker Tools Hardware
  90. Hack And Tools
  91. Hack Tools For Ubuntu
  92. Hack Tools Online
  93. Top Pentest Tools
  94. Hack Tool Apk No Root
  95. Hacking Tools For Games
  96. Hacker Security Tools
  97. Hacker Tool Kit
  98. Pentest Tools For Ubuntu
  99. Pentest Tools For Android
  100. Free Pentest Tools For Windows
  101. Pentest Tools Nmap
  102. Hack Tools For Ubuntu
  103. Pentest Tools Windows
  104. Hacking Tools Online
  105. Hack Tools
  106. Hack Tools 2019
  107. What Is Hacking Tools
  108. Pentest Tools Free
  109. Hack Tools For Mac
  110. Hacker Tools Online
  111. Pentest Tools Port Scanner
  112. Install Pentest Tools Ubuntu
  113. Hacker
  114. Hacking Tools Windows
  115. Pentest Box Tools Download
  116. Pentest Tools Free
  117. Pentest Tools For Android
  118. Top Pentest Tools
  119. Pentest Tools Bluekeep
  120. Hacking Tools For Kali Linux
  121. Hacking Tools Usb
  122. Hacker Tools Apk
  123. Pentest Tools Windows
  124. Hak5 Tools
  125. Pentest Automation Tools
  126. Hacker Tools
  127. Hacking Tools Free Download
  128. Hacker Tools Hardware
  129. Hacker Tools Hardware
  130. Hacker Tools For Pc
  131. Hacking Tools For Beginners
  132. Pentest Tools Website Vulnerability
  133. Hacker Tools Apk Download
  134. New Hacker Tools
  135. Pentest Tools Windows
  136. Hacking Tools For Windows
  137. Pentest Tools
  138. Pentest Tools Tcp Port Scanner
  139. Hack Website Online Tool
  140. Pentest Box Tools Download
  141. Hacking Tools For Games
  142. Hack Tools For Games
  143. What Is Hacking Tools
  144. Hacker Tools 2019
  145. Hak5 Tools
  146. Pentest Tools Website
  147. Usb Pentest Tools
  148. What Are Hacking Tools
  149. Hacker Tools Software
  150. Hacking Tools Windows
  151. Pentest Box Tools Download
  152. Pentest Tools Android
  153. Hacking Tools For Mac
  154. Hacking Tools Hardware
  155. Hacker Hardware Tools
  156. Pentest Tools Apk
  157. Hacking Tools 2020
  158. Hacking Tools Windows 10
  159. Pentest Tools Android
  160. Pentest Tools Windows
  161. Easy Hack Tools
  162. Hacker Techniques Tools And Incident Handling
  163. Hacking Tools For Kali Linux
  164. Nsa Hacker Tools
  165. Hacking Tools Name
  166. Hacking Tools Github
  167. Hacker Tools For Pc
  168. Hacking Tools For Windows Free Download
  169. Hacker Tools 2020
  170. Free Pentest Tools For Windows
  171. Hacking Tools For Mac
  172. Hackrf Tools

0 comentários:

Postar um comentário

Assinar: Postar comentários (Atom)

Donations

BTC: bc1qxv3stg0xha9upurf7h4aqnmg3xjn3h0zk28kpe

ETH: 0x01870296774Fb0A2DbF9b44d2E6a57fb8Ccea070

LTC: LQ44CP6xDDkX5bAiKd3yqmDB4c23U7orrQ

DOGE: DCpu9v1bkTXj8VKUDG97LHdV2qipDPyZsR

ADA: addr1qx4q7348dv2ju5zshee9ru23ssmqhyyjlnxe0xlezjq5we42par2w6c49eg9p0nj28c4rppkpwgf9lxdj7dlj9ypganqtmuu2p

Archives

Tecnologia do Blogger.