Vulcan DoS Vs Akamai

In the past I had to do several DoS security audits, with múltiples types of tests and intensities. Sometimes several DDoS protections were present like Akamai for static content, and Arbor for absorb part of the bandwith.

One consideration for the DoS/DDoS tools is that probably it will loss the control of the attacker host, and the tool at least has to be able to stop automatically with a timeout, but can also implement remote response checks.

In order to size the minimum mbps needed to flood a service or to retard the response in a significant amount of time, the attacker hosts need a bandwith limiter, that increments in a logarithmic way up to a limit agreed with the customer/isp/cpd.

There are DoS tools that doesn't have this timeouts, and bandwith limit based on mbps, for that reason I have to implement a LD_PRELOAD based solution: bwcontrol

Although there are several good tools for stressing web servers and web aplications like apache ab, or other common tools used for pen-testing, but I also wrote a fast web flooder in c++ named wflood.

As expected the most effective for taking down the web server are the slow-loris, slow-read and derivatives, few host were needed to DoS an online banking. 

Remote attacks to database and highly dynamic web content were discarded, that could be impacted for sure.

I did another tool in c++ for crafting massive tcp/udp/ip malformed packets, that impacted sometimes on load balancers and firewalls, it was vulcan, it freezed even the firewall client software.

The funny thing was that the common attacks against Akamai hosts, where ineffective, and so does the slow-loris family of attacks, because are common, and the Akamai nginx webservers are well tunned. But when tried vulcan, few intensity was enough to crash Akamai hosts.

Another attack vector for static sites was trying to locate the IP of the customer instead of Akamai, if the customer doesn't use the Akamai Shadow service, it's possible to perform a HTTP Host header scan, and direct the attack to that host bypassing Akamai.

And what about Arbor protection? is good for reducing the flood but there are other kind of attacks, and this protection use to be disabled by default and in local holidays can be a mess.

Related posts

1. Bluetooth Hacking Tools Kali
2. Hacking Tools
3. Hacking Tools And Software
4. Pentest Tools Url Fuzzer
5. Top Pentest Tools
6. Hacker Tools 2019
7. Hacking Tools Software
8. Hack Tool Apk
9. Github Hacking Tools
10. Pentest Tools Download
11. Pentest Tools Framework
12. Pentest Tools Open Source
13. Hack Tools Mac
14. Hacking Tools 2020
15. Pentest Tools Online
16. Underground Hacker Sites
17. Black Hat Hacker Tools
18. Hacker Tools Free
19. Black Hat Hacker Tools
20. Hacking Tools Software
21. How To Make Hacking Tools
22. Hack Tool Apk No Root
23. Kik Hack Tools
24. Hacker
25. Wifi Hacker Tools For Windows
26. Hack Tool Apk
27. Hacks And Tools
28. Hacker Techniques Tools And Incident Handling
29. Hack Tools Download
30. Hack Tool Apk
31. Hacking Tools For Windows
32. Pentest Tools Url Fuzzer
33. Hack Tools Online
34. Android Hack Tools Github
35. Free Pentest Tools For Windows
36. Computer Hacker
37. Wifi Hacker Tools For Windows
38. Pentest Tools List
39. Best Hacking Tools 2019
40. Hacker Tools For Pc
41. How To Hack
42. Bluetooth Hacking Tools Kali
43. Pentest Tools Download
44. Hack Tool Apk No Root
45. Black Hat Hacker Tools
46. Pentest Tools Website
47. Pentest Tools Nmap
48. Hack Tools Github
49. Underground Hacker Sites
50. Hacking Tools For Windows
51. Install Pentest Tools Ubuntu
52. Hacking Tools For Windows 7
53. Hacker Tools Windows