Vulcan DoS Vs Akamai

In the past I had to do several DoS security audits, with múltiples types of tests and intensities. Sometimes several DDoS protections were present like Akamai for static content, and Arbor for absorb part of the bandwith.

One consideration for the DoS/DDoS tools is that probably it will loss the control of the attacker host, and the tool at least has to be able to stop automatically with a timeout, but can also implement remote response checks.

In order to size the minimum mbps needed to flood a service or to retard the response in a significant amount of time, the attacker hosts need a bandwith limiter, that increments in a logarithmic way up to a limit agreed with the customer/isp/cpd.

There are DoS tools that doesn't have this timeouts, and bandwith limit based on mbps, for that reason I have to implement a LD_PRELOAD based solution: bwcontrol

Although there are several good tools for stressing web servers and web aplications like apache ab, or other common tools used for pen-testing, but I also wrote a fast web flooder in c++ named wflood.

As expected the most effective for taking down the web server are the slow-loris, slow-read and derivatives, few host were needed to DoS an online banking. 

Remote attacks to database and highly dynamic web content were discarded, that could be impacted for sure.

I did another tool in c++ for crafting massive tcp/udp/ip malformed packets, that impacted sometimes on load balancers and firewalls, it was vulcan, it freezed even the firewall client software.

The funny thing was that the common attacks against Akamai hosts, where ineffective, and so does the slow-loris family of attacks, because are common, and the Akamai nginx webservers are well tunned. But when tried vulcan, few intensity was enough to crash Akamai hosts.

Another attack vector for static sites was trying to locate the IP of the customer instead of Akamai, if the customer doesn't use the Akamai Shadow service, it's possible to perform a HTTP Host header scan, and direct the attack to that host bypassing Akamai.

And what about Arbor protection? is good for reducing the flood but there are other kind of attacks, and this protection use to be disabled by default and in local holidays can be a mess.

More articles

1. Usb Pentest Tools
2. Hacks And Tools
3. Computer Hacker
4. Hacker Tools For Ios
5. Hacker Tools For Ios
6. Hack Tools
7. Termux Hacking Tools 2019
8. Pentest Tools Bluekeep
9. Hacker Tools Apk
10. Pentest Tools Framework
11. Termux Hacking Tools 2019
12. Hack App
13. Beginner Hacker Tools
14. Physical Pentest Tools
15. Pentest Tools Kali Linux
16. Pentest Tools Alternative
17. Pentest Tools List
18. Wifi Hacker Tools For Windows
19. Hacking Tools Kit
20. Pentest Tools Subdomain
21. Hacker Tools Hardware
22. Hacking Tools
23. Hack Tool Apk
24. Hack App
25. Pentest Tools Github
26. Pentest Tools Nmap
27. Game Hacking
28. Hacking Tools Free Download
29. Hak5 Tools
30. Pentest Tools Online
31. How To Make Hacking Tools
32. Pentest Tools For Windows
33. Hack Tools Mac
34. Hacker Tools List
35. What Is Hacking Tools
36. Hacking Tools Download
37. Hacking Tools For Mac
38. Hacking Tools Github
39. Pentest Tools Open Source
40. Usb Pentest Tools
41. Best Hacking Tools 2020
42. Hacker Tools For Pc
43. What Are Hacking Tools
44. Hacker Tools
45. Hack Tools For Ubuntu
46. Hacking Tools For Windows 7
47. Hacker Tools Windows
48. Wifi Hacker Tools For Windows
49. Hack Website Online Tool
50. Hacking Tools Free Download
51. Hacking Tools For Mac
52. Hacking Tools Mac
53. Hacking Tools
54. Easy Hack Tools
55. Termux Hacking Tools 2019
56. Tools Used For Hacking
57. Pentest Tools List
58. Hacker Tools Linux
59. How To Hack
60. Hackrf Tools
61. Pentest Tools Open Source
62. Hack Tools For Windows
63. Hacker Tools Windows
64. Pentest Tools For Ubuntu
65. Hack Tools For Ubuntu
66. Hacker Tools Free
67. Hacker Tools Free Download
68. Hacking Tools 2019
69. Hack Tool Apk
70. Hacking Tools Free Download
71. Hack Tools For Mac
72. Hacking Tools Github
73. Hacker Tools Apk
74. Hacking Tools Online
75. Tools 4 Hack
76. Pentest Tools For Windows
77. Pentest Tools Website
78. Pentest Tools Android
79. Hacker Tools For Pc
80. Hacker Tools Mac
81. Pentest Tools Website
82. Game Hacking
83. Hacking Tools For Games
84. Hackrf Tools
85. Easy Hack Tools
86. Top Pentest Tools
87. Pentest Tools Framework
88. Pentest Tools Download
89. Hack And Tools
90. Growth Hacker Tools
91. Hack Rom Tools
92. Easy Hack Tools
93. Hacking Tools 2020
94. Hacker Security Tools
95. Pentest Tools Tcp Port Scanner
96. Growth Hacker Tools
97. Hacking Tools Windows
98. Pentest Tools Review
99. Pentest Tools Find Subdomains
100. Hacking Tools Windows
101. Underground Hacker Sites
102. Hack Apps
103. Hack Tools Pc
104. Pentest Tools Tcp Port Scanner
105. Pentest Tools Apk
106. Pentest Tools Website Vulnerability
107. Hack Tools For Ubuntu
108. Nsa Hack Tools Download
109. Hacking Tools For Games
110. Hacking Tools For Windows Free Download
111. Hack Tool Apk
112. Nsa Hack Tools
113. Tools For Hacker
114. Hacker Tools For Windows
115. Hacking Tools Windows
116. Hacker Tools Apk Download
117. Hacker Tools Online
118. Free Pentest Tools For Windows
119. Pentest Box Tools Download
120. Hack Tools Github
121. Pentest Tools Apk
122. Hacks And Tools
123. Best Hacking Tools 2019
124. Hacking Tools Mac

Posted in: