Vulcan DoS Vs Akamai

In the past I had to do several DoS security audits, with múltiples types of tests and intensities. Sometimes several DDoS protections were present like Akamai for static content, and Arbor for absorb part of the bandwith.

One consideration for the DoS/DDoS tools is that probably it will loss the control of the attacker host, and the tool at least has to be able to stop automatically with a timeout, but can also implement remote response checks.

In order to size the minimum mbps needed to flood a service or to retard the response in a significant amount of time, the attacker hosts need a bandwith limiter, that increments in a logarithmic way up to a limit agreed with the customer/isp/cpd.

There are DoS tools that doesn't have this timeouts, and bandwith limit based on mbps, for that reason I have to implement a LD_PRELOAD based solution: bwcontrol

Although there are several good tools for stressing web servers and web aplications like apache ab, or other common tools used for pen-testing, but I also wrote a fast web flooder in c++ named wflood.

As expected the most effective for taking down the web server are the slow-loris, slow-read and derivatives, few host were needed to DoS an online banking. 

Remote attacks to database and highly dynamic web content were discarded, that could be impacted for sure.

I did another tool in c++ for crafting massive tcp/udp/ip malformed packets, that impacted sometimes on load balancers and firewalls, it was vulcan, it freezed even the firewall client software.

The funny thing was that the common attacks against Akamai hosts, where ineffective, and so does the slow-loris family of attacks, because are common, and the Akamai nginx webservers are well tunned. But when tried vulcan, few intensity was enough to crash Akamai hosts.

Another attack vector for static sites was trying to locate the IP of the customer instead of Akamai, if the customer doesn't use the Akamai Shadow service, it's possible to perform a HTTP Host header scan, and direct the attack to that host bypassing Akamai.

And what about Arbor protection? is good for reducing the flood but there are other kind of attacks, and this protection use to be disabled by default and in local holidays can be a mess.

Continue reading

1. Beginner Hacker Tools
2. Hacker Tool Kit
3. Underground Hacker Sites
4. Hacking Apps
5. Nsa Hack Tools
6. Underground Hacker Sites
7. Hacker Tools 2020
8. Hacking Tools Free Download
9. Hacker Security Tools
10. Hacker Tools Online
11. Usb Pentest Tools
12. Best Hacking Tools 2019
13. Wifi Hacker Tools For Windows
14. Hack Rom Tools
15. Pentest Box Tools Download
16. Hacker Hardware Tools
17. Hacker Tools For Ios
18. Hackers Toolbox
19. Hacker Tools Windows
20. Hacker Tools Mac
21. Pentest Tools List
22. Bluetooth Hacking Tools Kali
23. Hacking Tools Windows
24. New Hacker Tools
25. Free Pentest Tools For Windows
26. Hacker Tools Linux
27. Hack Tools Mac
28. Pentest Tools Subdomain
29. Hak5 Tools
30. World No 1 Hacker Software
31. Pentest Tools Tcp Port Scanner
32. Pentest Tools Find Subdomains
33. Tools For Hacker
34. Pentest Tools List
35. Hack App
36. Hacker Tools 2019
37. Hackers Toolbox
38. Hacking Tools Name
39. Hacker Tools For Mac
40. Tools For Hacker
41. Hack Tools
42. Hackers Toolbox
43. Hacker Tools Apk
44. Hacking Tools Pc
45. World No 1 Hacker Software
46. Hacker Tools 2019
47. Hacking Tools 2020
48. Hacking Tools For Mac
49. Pentest Tools Free
50. Pentest Automation Tools
51. Game Hacking
52. Nsa Hack Tools Download
53. Hacking Tools Name
54. Hack And Tools
55. Hacking Tools And Software
56. Hacking Tools And Software
57. Termux Hacking Tools 2019
58. Hack Tool Apk No Root
59. Android Hack Tools Github
60. Pentest Tools For Android
61. Pentest Tools Website
62. How To Hack
63. Easy Hack Tools
64. Pentest Tools Tcp Port Scanner
65. How To Hack
66. Physical Pentest Tools
67. Hacking Tools For Pc
68. Pentest Tools Subdomain
69. Hack Tools
70. Hacker Search Tools
71. Usb Pentest Tools
72. Hacker Tools Mac
73. Pentest Box Tools Download
74. Hack Rom Tools
75. Hacking Tools For Pc
76. Hack Tools For Mac
77. Hacking Tools For Pc
78. Hack Tools 2019
79. Hacker Tools For Pc
80. Hack Tools For Pc
81. Hack Tools For Windows
82. New Hack Tools
83. Hacking Apps
84. Hacking Tools Github
85. Hacker Tools Github
86. Hack Tools For Ubuntu
87. Termux Hacking Tools 2019
88. Pentest Tools For Android
89. How To Make Hacking Tools
90. Hack Tools
91. Hacker Tools Free
92. Hacks And Tools
93. Hack Tool Apk
94. Android Hack Tools Github
95. Hacker Techniques Tools And Incident Handling
96. Hacker Tools For Windows
97. Hacking Tools Name
98. Best Pentesting Tools 2018
99. Hacker Tools Mac
100. Hacking Tools Download
101. Android Hack Tools Github
102. Hackers Toolbox
103. Hacker Tools List
104. Hack Tools For Windows
105. Hacking Tools Mac
106. New Hacker Tools
107. Hacker Tools Software
108. Pentest Tools Download
109. Pentest Recon Tools
110. Hacker Tools Free Download
111. Hack Tools For Games
112. Hacker Tools Mac
113. Kik Hack Tools
114. Hacking Tools Software
115. World No 1 Hacker Software
116. Hacking Tools Windows 10
117. Hacker Tools For Ios
118. Pentest Tools Apk
119. Hacking Tools Mac
120. Hack Tools Pc
121. How To Make Hacking Tools
122. Best Hacking Tools 2020
123. Hacker Tool Kit
124. Tools 4 Hack
125. Pentest Tools Open Source
126. Easy Hack Tools
127. Hacking Tools Kit
128. Hacker
129. Hack Tools Mac
130. Tools 4 Hack
131. Hack Tools Github
132. Tools Used For Hacking
133. Pentest Tools Download
134. Hacking Tools 2019
135. Hacker Tools For Ios
136. Hacking Tools Download
137. How To Hack
138. Pentest Tools Github
139. Hack Tools Mac
140. Hacker Tools 2019
141. Hack Tools For Ubuntu
142. Hacking Tools 2019