Penetration Testing mailing list archives
Re: DDos within a pentest
From: Jose Maria Lopez Hernandez <jkerouac () bgsec com>
Date: Tue, 10 May 2005 10:44:08 +0200
El vie, 06-05-2005 a las 09:44 +0200, Julian Totzek escribió:
Hi group, within a pentest we trying to offer the possibility of a DDos Foold for our customers. I know there are many tools to do a flood from a single PC, but all of these tools just send as many syn's as the can. Does anybody know a tool where I'm able to limit the bandwidth? I don’t want to get a bandwidth overload, I just want to show that the server is not able to handle all the syn packets. An other question is from where would I start such a attack? We only have a 2Mbit line here in the office, so if I need to flood a 10Mbit line there will not be enough packets to do this, right? Maybe there is a provider out there who already offers this service! The third question is what will be the side effects if I send packets with spoofed sources? As you all know I don't a answer to my packets, but would it be a DDos to all spoofed sources then? How can you ensure that only the main target is getting flooded? Best regards Julian Totzek THE BRISTOL GROUP Deutschland GmbH Robert-Bosch-Straße 11 63225 Langen Telefon +49 (0) 6103 20 55 300 Telefax +49 (0) 6103 70 27 87 Emergency Phone 0190/858 979 000 (1,86€/min) julian.totzek () bristol de www.bristol.de HTTPS, HTTP, SMTP, IMAP, POP3 und FTP Kostenloser 14-Tage-Test einer CP Secure Antivirus Appliance http://www.bristol.de/testing.htm
A good way to simulate a Ddos attack, and above all if you care about an overwhelming amount of SYN connections, is to install a P2P client in the target machine. You just put a lot (30 or 40) of the most popular files in the queue, configure the P2P to have a lot of sources for each file, and you are done... thousands of machines will make connections to you and from you. It's a poor man Ddos tool. I've been working a lot to block the P2P's in the enterprise, and now I have found they are useful for something. That's odd... Regards. -- Jose Maria Lopez Hernandez Director Tecnico de bgSEC jkerouac () bgsec com bgSEC Seguridad y Consultoria de Sistemas http://www.bgsec.com ESPAÑA The only people for me are the mad ones -- the ones who are mad to live, mad to talk, mad to be saved, desirous of everything at the same time, the ones who never yawn or say a commonplace thing, but burn, burn, burn like fabulous yellow Roman candles. -- Jack Kerouac, "On the Road"
Current thread:
- DDos within a pentest Julian Totzek (May 09)
- Re: DDos within a pentest Sels, Roger (May 09)
- Re: DDos within a pentest Thierry Zoller (May 09)
- Re: DDos within a pentest Thierry Zoller (May 11)
- RE: DDos within a pentest Omar Herrera (May 11)
- Re: DDos within a pentest Jose Maria Lopez Hernandez (May 11)
- <Possible follow-ups>
- Re: DDos within a pentest Christoph Puppe (May 17)
- Re: DDos within a pentest Christoph Puppe (May 18)