Vulcan DoS Vs Akamai

In the past I had to do several DoS security audits, with múltiples types of tests and intensities. Sometimes several DDoS protections were present like Akamai for static content, and Arbor for absorb part of the bandwith.

One consideration for the DoS/DDoS tools is that probably it will loss the control of the attacker host, and the tool at least has to be able to stop automatically with a timeout, but can also implement remote response checks.

In order to size the minimum mbps needed to flood a service or to retard the response in a significant amount of time, the attacker hosts need a bandwith limiter, that increments in a logarithmic way up to a limit agreed with the customer/isp/cpd.

There are DoS tools that doesn't have this timeouts, and bandwith limit based on mbps, for that reason I have to implement a LD_PRELOAD based solution: bwcontrol

Although there are several good tools for stressing web servers and web aplications like apache ab, or other common tools used for pen-testing, but I also wrote a fast web flooder in c++ named wflood.

As expected the most effective for taking down the web server are the slow-loris, slow-read and derivatives, few host were needed to DoS an online banking. 

Remote attacks to database and highly dynamic web content were discarded, that could be impacted for sure.

I did another tool in c++ for crafting massive tcp/udp/ip malformed packets, that impacted sometimes on load balancers and firewalls, it was vulcan, it freezed even the firewall client software.

The funny thing was that the common attacks against Akamai hosts, where ineffective, and so does the slow-loris family of attacks, because are common, and the Akamai nginx webservers are well tunned. But when tried vulcan, few intensity was enough to crash Akamai hosts.

Another attack vector for static sites was trying to locate the IP of the customer instead of Akamai, if the customer doesn't use the Akamai Shadow service, it's possible to perform a HTTP Host header scan, and direct the attack to that host bypassing Akamai.

And what about Arbor protection? is good for reducing the flood but there are other kind of attacks, and this protection use to be disabled by default and in local holidays can be a mess.

Related news

1. Pentest Reporting Tools
2. Hack Apps
3. Hacker Hardware Tools
4. Hacking Tools Kit
5. Tools 4 Hack
6. Hacker Search Tools
7. New Hacker Tools
8. Github Hacking Tools
9. How To Make Hacking Tools
10. Hacking Tools Usb
11. Beginner Hacker Tools
12. Hacking Tools 2019
13. Hak5 Tools
14. New Hacker Tools
15. Hack Tool Apk
16. Pentest Tools Download
17. Hacking Tools Online
18. Nsa Hack Tools
19. Hacking App
20. Usb Pentest Tools
21. Pentest Tools Tcp Port Scanner
22. Hacker Tools Hardware
23. Hack Tool Apk
24. Hacking Tools Online
25. Hack Tools Github
26. Hacker
27. Pentest Tools Online
28. New Hack Tools
29. Hacker Tools Free
30. Hacker Tools Free
31. Hack Apps
32. Hacker Tools Software
33. Pentest Tools Find Subdomains
34. Pentest Tools Free
35. Hacking Tools Hardware
36. Hack Tools Mac
37. Pentest Tools Tcp Port Scanner
38. Tools Used For Hacking
39. Pentest Tools For Ubuntu
40. Pentest Tools Alternative
41. Usb Pentest Tools
42. How To Make Hacking Tools
43. Hack Tools For Pc
44. Hack Website Online Tool
45. Tools For Hacker
46. Hacking Tools And Software
47. Pentest Automation Tools
48. What Are Hacking Tools
49. Hacker Tools For Mac
50. Hacking Tools And Software
51. Hacker Tools Free
52. Hack Apps
53. Hackers Toolbox
54. Free Pentest Tools For Windows
55. Pentest Tools For Mac
56. New Hack Tools
57. Install Pentest Tools Ubuntu
58. What Are Hacking Tools
59. Hacker Tools 2020
60. Pentest Tools Review
61. Pentest Tools Apk
62. Hacking Tools For Beginners
63. Hacking Tools For Games