Monday, May 29, 2023

Vulcan DoS Vs Akamai

In the past I had to do several DoS security audits, with mĂșltiples types of tests and intensities. Sometimes several DDoS protections were present like Akamai for static content, and Arbor for absorb part of the bandwith.

One consideration for the DoS/DDoS tools is that probably it will loss the control of the attacker host, and the tool at least has to be able to stop automatically with a timeout, but can also implement remote response checks.

In order to size the minimum mbps needed to flood a service or to retard the response in a significant amount of time, the attacker hosts need a bandwith limiter, that increments in a logarithmic way up to a limit agreed with the customer/isp/cpd.

There are DoS tools that doesn't have this timeouts, and bandwith limit based on mbps, for that reason I have to implement a LD_PRELOAD based solution: bwcontrol

Although there are several good tools for stressing web servers and web aplications like apache ab, or other common tools used for pen-testing, but I also wrote a fast web flooder in c++ named wflood.

As expected the most effective for taking down the web server are the slow-loris, slow-read and derivatives, few host were needed to DoS an online banking. 
Remote attacks to database and highly dynamic web content were discarded, that could be impacted for sure.

I did another tool in c++ for crafting massive tcp/udp/ip malformed packets, that impacted sometimes on load balancers and firewalls, it was vulcan, it freezed even the firewall client software.

The funny thing was that the common attacks against Akamai hosts, where ineffective, and so does the slow-loris family of attacks, because are common, and the Akamai nginx webservers are well tunned. But when tried vulcan, few intensity was enough to crash Akamai hosts.

Another attack vector for static sites was trying to locate the IP of the customer instead of Akamai, if the customer doesn't use the Akamai Shadow service, it's possible to perform a HTTP Host header scan, and direct the attack to that host bypassing Akamai.

And what about Arbor protection? is good for reducing the flood but there are other kind of attacks, and this protection use to be disabled by default and in local holidays can be a mess.

Related articles


  1. Easy Hack Tools
  2. Hacking Tools Windows
  3. Tools Used For Hacking
  4. Hacking Tools 2019
  5. Hack Tools For Ubuntu
  6. Hacking Tools Pc
  7. Hacking Tools For Kali Linux
  8. Hacking Tools For Windows
  9. Hackrf Tools
  10. Hacking Tools Free Download
  11. Hacker Hardware Tools
  12. Pentest Tools Website Vulnerability
  13. Free Pentest Tools For Windows
  14. Pentest Reporting Tools
  15. Pentest Tools Linux
  16. Hacker Security Tools
  17. Hacker Security Tools
  18. Hack Tools
  19. Underground Hacker Sites
  20. Hacker Tools Free Download
  21. Pentest Recon Tools
  22. Hacking App
  23. Hack Tools For Ubuntu
  24. Hacker Tools 2019
  25. Hack Tools Github
  26. Hack Tools
  27. Pentest Tools Online
  28. Pentest Tools Tcp Port Scanner
  29. Kik Hack Tools
  30. Bluetooth Hacking Tools Kali
  31. Pentest Tools For Windows
  32. Hack Tools
  33. Hacker Tools For Mac
  34. Hack Tools For Ubuntu
  35. Hacker Tools List
  36. Hacking Tools Kit
  37. Pentest Tools Linux
  38. Ethical Hacker Tools
  39. Hacker Tools List
  40. Hacking Tools
  41. Pentest Tools Website Vulnerability
  42. Hack Rom Tools
  43. Hack Apps
  44. Pentest Tools Alternative
  45. Hack Tool Apk No Root
  46. Nsa Hacker Tools
  47. Hack Tools For Ubuntu
  48. Best Hacking Tools 2019
  49. Hacking Tools For Games
  50. Github Hacking Tools
  51. Hacker Tools 2019
  52. Hacker Search Tools
  53. Android Hack Tools Github
  54. Hacker Tools 2019
  55. Hacking Apps
  56. How To Hack
  57. New Hacker Tools
  58. Hacker Security Tools
  59. Pentest Tools For Mac
  60. Pentest Automation Tools
  61. Hacker Tools Free Download
  62. Pentest Tools Framework
  63. New Hacker Tools
  64. Hacking Apps
  65. Hacking Tools Free Download
  66. Hacker Tools Github
  67. World No 1 Hacker Software
  68. Pentest Tools Nmap
  69. Best Hacking Tools 2019
  70. Hack Tools Mac
  71. Tools For Hacker
  72. Pentest Tools Linux
  73. World No 1 Hacker Software
  74. Hacking Tools Usb
  75. Hack Tools For Pc
  76. Hack Website Online Tool
  77. Growth Hacker Tools
  78. Hacker Tools List
  79. Hacker Tools Free
  80. Install Pentest Tools Ubuntu
  81. Hacking Tools Windows
  82. Hacker Tools Windows
  83. Hack Tools For Games
  84. Hacker Tool Kit
  85. Hacker Tools 2019
  86. Hak5 Tools
  87. World No 1 Hacker Software
  88. Hack Tools For Windows
  89. Hacker Tools For Mac
  90. New Hacker Tools
  91. Pentest Tools For Windows
  92. Hacking Tools Pc
  93. Tools 4 Hack
  94. Hak5 Tools
  95. Pentest Recon Tools
  96. Blackhat Hacker Tools
  97. Hacking Tools 2019
  98. Hacking Tools Online
  99. Hacker Tools Linux
  100. How To Make Hacking Tools
  101. Pentest Tools Open Source
  102. Hacker Tools Hardware
  103. Ethical Hacker Tools
  104. Hacker Hardware Tools
  105. Pentest Tools Framework
  106. Free Pentest Tools For Windows
  107. Hacking Tools Usb
  108. Tools Used For Hacking
  109. Hack Tools
  110. Hacker Tools 2020
  111. Ethical Hacker Tools
  112. Hacking Tools Pc
  113. Pentest Tools Review
  114. How To Make Hacking Tools
  115. Hacking Tools 2020
  116. Best Pentesting Tools 2018
  117. Hack Tools For Mac
  118. Hacker Tools For Ios
  119. Hacker Tools Free Download
  120. Hack Tool Apk No Root
  121. Top Pentest Tools
  122. New Hacker Tools
  123. Pentest Automation Tools
  124. Pentest Tools Alternative
  125. Hack Tools For Pc
  126. Hacking Tools Hardware
  127. Hacking Tools Download
  128. Pentest Box Tools Download
  129. Hack Tools For Mac
  130. Pentest Tools Apk
  131. Hak5 Tools
  132. Hacker Tools Mac
  133. Hack Tools For Ubuntu
  134. Hacker Tools Github
  135. Hak5 Tools
  136. New Hacker Tools
  137. Hacking Tools For Windows 7
  138. Pentest Tools Kali Linux
  139. Usb Pentest Tools
  140. Pentest Tools Tcp Port Scanner
  141. Hacking Tools Kit
  142. Bluetooth Hacking Tools Kali
  143. New Hacker Tools
  144. Hack Rom Tools
  145. Tools 4 Hack
  146. Hacking Tools Online
  147. Hacking Tools For Games
  148. Pentest Tools Find Subdomains
  149. Ethical Hacker Tools
  150. How To Install Pentest Tools In Ubuntu
  151. What Are Hacking Tools
  152. Hack Tools Pc
  153. Hacker Tools 2020
  154. Hack Tools For Windows
  155. Hacker Tools Linux
  156. Hacker Tools Mac
  157. Pentest Reporting Tools
  158. Hack Tools For Mac
  159. Hacker Tools 2020
  160. Hack Rom Tools
  161. Hacking Tools For Windows Free Download
  162. Pentest Tools Kali Linux
  163. Hacker Tools Mac
  164. Hack Tools Download
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)