Vulcan DoS Vs Akamai

In the past I had to do several DoS security audits, with múltiples types of tests and intensities. Sometimes several DDoS protections were present like Akamai for static content, and Arbor for absorb part of the bandwith.

One consideration for the DoS/DDoS tools is that probably it will loss the control of the attacker host, and the tool at least has to be able to stop automatically with a timeout, but can also implement remote response checks.

In order to size the minimum mbps needed to flood a service or to retard the response in a significant amount of time, the attacker hosts need a bandwith limiter, that increments in a logarithmic way up to a limit agreed with the customer/isp/cpd.

There are DoS tools that doesn't have this timeouts, and bandwith limit based on mbps, for that reason I have to implement a LD_PRELOAD based solution: bwcontrol

Although there are several good tools for stressing web servers and web aplications like apache ab, or other common tools used for pen-testing, but I also wrote a fast web flooder in c++ named wflood.

As expected the most effective for taking down the web server are the slow-loris, slow-read and derivatives, few host were needed to DoS an online banking. 

Remote attacks to database and highly dynamic web content were discarded, that could be impacted for sure.

I did another tool in c++ for crafting massive tcp/udp/ip malformed packets, that impacted sometimes on load balancers and firewalls, it was vulcan, it freezed even the firewall client software.

The funny thing was that the common attacks against Akamai hosts, where ineffective, and so does the slow-loris family of attacks, because are common, and the Akamai nginx webservers are well tunned. But when tried vulcan, few intensity was enough to crash Akamai hosts.

Another attack vector for static sites was trying to locate the IP of the customer instead of Akamai, if the customer doesn't use the Akamai Shadow service, it's possible to perform a HTTP Host header scan, and direct the attack to that host bypassing Akamai.

And what about Arbor protection? is good for reducing the flood but there are other kind of attacks, and this protection use to be disabled by default and in local holidays can be a mess.

Related posts

• Hacking Tools For Beginners
• Tools For Hacker
• Hacker Tools List
• Hacker Tools For Ios
• Best Hacking Tools 2019
• Hack Rom Tools
• Hacking Tools Mac
• Hacking Tools Github
• Hack Website Online Tool
• Hacking Tools And Software
• Hacker Tools For Windows
• Hacker Security Tools
• Hacking Tools Pc
• Computer Hacker
• Hack Rom Tools
• Hacking Tools Windows
• Underground Hacker Sites
• Tools 4 Hack
• Black Hat Hacker Tools
• Hacking Tools Usb
• Hacker Techniques Tools And Incident Handling
• How To Hack
• Hacking Apps
• Hack Tools For Ubuntu
• Pentest Tools Free
• Hacker Tools 2019
• Hackers Toolbox
• Pentest Tools Url Fuzzer
• Hacker Tools For Ios
• Pentest Tools Linux
• Nsa Hack Tools
• Hack Website Online Tool
• Pentest Tools Download
• Pentest Tools For Windows
• Hacker Tools List
• Hack Tools Online
• Hacker Tool Kit
• Hacking Tools For Beginners
• Pentest Tools Alternative
• Growth Hacker Tools
• Hacker Tools
• Hacking Tools Name
• Pentest Tools For Android
• Hacking Tools Software
• Hak5 Tools
• Pentest Tools Website
• Hack Tools Pc
• Hack Tool Apk No Root
• Hacking Tools For Windows Free Download
• Hacking Tools 2019
• Pentest Tools Framework
• Hacking Tools Github
• Computer Hacker
• Hacking Tools Online
• Pentest Tools Github
• Pentest Tools Windows
• Hack Tools
• Hacker Search Tools
• Nsa Hacker Tools
• Hack Tools Online
• Hacker Tools Free
• Easy Hack Tools
• Pentest Automation Tools
• Hacking Tools Name
• New Hack Tools
• Hacker Hardware Tools
• Hacking Tools Pc
• Usb Pentest Tools
• Hacking Tools Pc
• Hacking Tools Name
• Game Hacking
• Hacker Tools For Pc
• Hacker Tools List
• Hacking Tools 2019
• Best Hacking Tools 2020
• Beginner Hacker Tools
• Hack Tool Apk
• Pentest Tools Open Source
• Hacker Tools Apk Download
• Pentest Tools Github
• Nsa Hacker Tools
• Hacking Tools For Windows
• Hacker Tools List
• Pentest Tools Alternative
• Hack Tools For Mac
• Tools For Hacker
• Hacker Tools Hardware
• Hack Tools 2019
• Hacker Tools Software
• Termux Hacking Tools 2019
• What Are Hacking Tools
• Hacking Tools Github
• Pentest Tools Kali Linux
• Hack Tool Apk No Root
• Hacking Tools Software
• Hacker Tools Free
• Hacker Tools 2019
• Pentest Tools Download
• Hacker Tools For Pc
• Hacker Security Tools
• Hacker Tools List
• Pentest Tools For Android
• Pentest Tools For Ubuntu
• Kik Hack Tools
• How To Make Hacking Tools
• Hacker Tools Free Download
• Pentest Tools Kali Linux
• Pentest Recon Tools
• Pentest Automation Tools
• Bluetooth Hacking Tools Kali
• Pentest Tools Download
• Best Hacking Tools 2019
• Hak5 Tools
• Blackhat Hacker Tools
• Kik Hack Tools
• Hacker Tools Windows
• Hack Tool Apk
• Blackhat Hacker Tools
• Hacker Tools Online
• Hacking Tools For Windows 7
• Hacker Tools For Windows
• Pentest Tools Online
• New Hacker Tools
• Hacking Apps
• How To Hack
• Pentest Automation Tools
• Hack Tools For Games
• Hacking Tools And Software
• Hak5 Tools
• Pentest Tools Linux
• New Hacker Tools
• Hacking Tools Mac
• Hack Tools
• Tools Used For Hacking
• Pentest Tools Alternative
• Hacker Tools For Pc
• Hack Tools
• Hacking Tools Hardware
• Hacking Tools Windows
• Hacker Tools 2019
• Hacker Tools Apk
• Top Pentest Tools
• Pentest Tools Open Source
• Kik Hack Tools
• Hack Rom Tools
• Hack App
• How To Install Pentest Tools In Ubuntu
• What Is Hacking Tools
• What Are Hacking Tools
• Hack Tools Github
• Hack Tools For Pc
• Hacker Tools Free Download
• What Is Hacking Tools
• Hacker Tools Mac
• Hacks And Tools
• Pentest Tools Download
• Hack Tools For Games
• Pentest Tools Framework
• Pentest Tools Github
• Hacking Tools Pc
• Pentest Tools Android
• Hacker Tools 2019
• Pentest Tools Alternative
• Hacker Tools Apk Download
• Pentest Tools Bluekeep
• Hack Apps
• Wifi Hacker Tools For Windows
• Hacking Tools For Kali Linux
• Hack Rom Tools
• Termux Hacking Tools 2019
• Hacker Tools
• Hack Tools For Windows
• Pentest Tools Website Vulnerability
• Hacking Tools For Kali Linux
• Nsa Hack Tools Download
• Hack Tools Mac
• Hack Tools Pc
• Hacker Tools 2019