Jumat, 21 Agustus 2020

Vulcan DoS Vs Akamai

In the past I had to do several DoS security audits, with múltiples types of tests and intensities. Sometimes several DDoS protections were present like Akamai for static content, and Arbor for absorb part of the bandwith.

One consideration for the DoS/DDoS tools is that probably it will loss the control of the attacker host, and the tool at least has to be able to stop automatically with a timeout, but can also implement remote response checks.

In order to size the minimum mbps needed to flood a service or to retard the response in a significant amount of time, the attacker hosts need a bandwith limiter, that increments in a logarithmic way up to a limit agreed with the customer/isp/cpd.

There are DoS tools that doesn't have this timeouts, and bandwith limit based on mbps, for that reason I have to implement a LD_PRELOAD based solution: bwcontrol

Although there are several good tools for stressing web servers and web aplications like apache ab, or other common tools used for pen-testing, but I also wrote a fast web flooder in c++ named wflood.

As expected the most effective for taking down the web server are the slow-loris, slow-read and derivatives, few host were needed to DoS an online banking. 
Remote attacks to database and highly dynamic web content were discarded, that could be impacted for sure.

I did another tool in c++ for crafting massive tcp/udp/ip malformed packets, that impacted sometimes on load balancers and firewalls, it was vulcan, it freezed even the firewall client software.

The funny thing was that the common attacks against Akamai hosts, where ineffective, and so does the slow-loris family of attacks, because are common, and the Akamai nginx webservers are well tunned. But when tried vulcan, few intensity was enough to crash Akamai hosts.

Another attack vector for static sites was trying to locate the IP of the customer instead of Akamai, if the customer doesn't use the Akamai Shadow service, it's possible to perform a HTTP Host header scan, and direct the attack to that host bypassing Akamai.

And what about Arbor protection? is good for reducing the flood but there are other kind of attacks, and this protection use to be disabled by default and in local holidays can be a mess.

Read more


  1. Hacking Tools Github
  2. Hacker Tools Apk
  3. Hacker Tools Software
  4. Free Pentest Tools For Windows
  5. Hacker Tools For Mac
  6. Hacker Tools Apk
  7. Blackhat Hacker Tools
  8. Pentest Tools Tcp Port Scanner
  9. Ethical Hacker Tools
  10. Pentest Tools Website
  11. Hacking Tools For Windows 7
  12. Hacker Tools Mac
  13. Hacker Tools Windows
  14. Hacking Tools Free Download
  15. Hack Rom Tools
  16. Hack Tools Download
  17. Hacks And Tools
  18. Hacker Search Tools
  19. Pentest Tools For Mac
  20. Hacking Tools For Windows Free Download
  21. What Is Hacking Tools
  22. Pentest Tools Windows
  23. Hacking Tools Github
  24. How To Install Pentest Tools In Ubuntu
  25. Hacking Apps
  26. Hacking Apps
  27. Hacking Tools Online
  28. Hacking Tools For Windows
  29. Hack Website Online Tool
  30. Pentest Tools List
  31. Hacking Tools 2020
  32. Hacking Tools Usb
  33. Hacker Hardware Tools
  34. Hackrf Tools
  35. Pentest Tools Port Scanner
  36. Hacking Tools Download
  37. Kik Hack Tools
  38. Pentest Tools Apk
  39. Hacking Tools Software
  40. How To Hack
  41. Nsa Hack Tools Download
  42. Hacking Tools Windows 10
  43. Hack Tools Online
  44. Best Hacking Tools 2020
  45. Hack Tools For Windows
  46. Pentest Tools Subdomain
  47. Beginner Hacker Tools
  48. Hack Tools Github
  49. Hackers Toolbox
  50. Hacker Tools Hardware
  51. Nsa Hack Tools
  52. Hack Tools
Diposting oleh di

Tidak ada komentar:

Posting Komentar

Langganan: Posting Komentar (Atom)