import www/slowhttptest, ok ajacoutot@
SlowHTTPTest is a highly configurable tool that simulates some Application Layer Denial of Service attacks. It implements most common low-bandwidth Application Layer DoS attacks, such as slowloris, Slow HTTP POST, Slow Read attack (based on TCP persist timer exploit) by draining concurrent connections pool, as well as Apache Range Header attack by causing very significant memory and CPU usage on the server. Slowloris and Slow HTTP POST DoS attacks rely on the fact that the HTTP protocol, by design, requires requests to be completely received by the server before they are processed. If an HTTP request is not complete, or if the transfer rate is very low, the server keeps its resources busy waiting for the rest of the data. If the server keeps too many resources busy, this creates a denial of service. This tool is sending partial HTTP requests, trying to get denial of service from target HTTP server. Slow Read DoS attack aims the same resources as slowloris and slow POST, but instead of prolonging the request, it sends legitimate HTTP request and reads the response slowly.
This commit is contained in:
parent
2d150d881c
commit
c2e068b9ec
27
www/slowhttptest/Makefile
Normal file
27
www/slowhttptest/Makefile
Normal file
@ -0,0 +1,27 @@
|
||||
# $OpenBSD: Makefile,v 1.1.1.1 2012/04/11 13:37:27 sthen Exp $
|
||||
|
||||
COMMENT= test tool for slow HTTP reads/posts
|
||||
|
||||
DISTNAME= slowhttptest-1.4
|
||||
|
||||
CATEGORIES= www security
|
||||
|
||||
HOMEPAGE= http://slowhttptest.googlecode.com/
|
||||
|
||||
# Apache 2.0
|
||||
PERMIT_PACKAGE_CDROM= Yes
|
||||
PERMIT_PACKAGE_FTP= Yes
|
||||
PERMIT_DISTFILES_CDROM= Yes
|
||||
PERMIT_DISTFILES_FTP= Yes
|
||||
|
||||
WANTLIB += c crypto m ssl stdc++
|
||||
|
||||
MASTER_SITES= ${HOMEPAGE}files/
|
||||
|
||||
SEPARATE_BUILD= simple
|
||||
CONFIGURE_STYLE= gnu
|
||||
LDFLAGS+= -lcrypto
|
||||
CONFIGURE_ENV= LDFLAGS="${LDFLAGS}"
|
||||
MAKE_FLAGS= LDFLAGS="${LDFLAGS}"
|
||||
|
||||
.include <bsd.port.mk>
|
5
www/slowhttptest/distinfo
Normal file
5
www/slowhttptest/distinfo
Normal file
@ -0,0 +1,5 @@
|
||||
MD5 (slowhttptest-1.4.tar.gz) = 75inwHhL/fEbl4LZssWAVA==
|
||||
RMD160 (slowhttptest-1.4.tar.gz) = mUAYM84e0s0JztkDmeNriuvGg8Q=
|
||||
SHA1 (slowhttptest-1.4.tar.gz) = ZRMFx2JVR3+BN3ZG2SmKFSjHXXc=
|
||||
SHA256 (slowhttptest-1.4.tar.gz) = 0VY1wFagRM+/Y4Is4EUrvh7Ro8okRxz0t9BMN14hFTw=
|
||||
SIZE (slowhttptest-1.4.tar.gz) = 102699
|
20
www/slowhttptest/pkg/DESCR
Normal file
20
www/slowhttptest/pkg/DESCR
Normal file
@ -0,0 +1,20 @@
|
||||
SlowHTTPTest is a highly configurable tool that simulates some
|
||||
Application Layer Denial of Service attacks.
|
||||
|
||||
It implements most common low-bandwidth Application Layer DoS attacks,
|
||||
such as slowloris, Slow HTTP POST, Slow Read attack (based on TCP persist
|
||||
timer exploit) by draining concurrent connections pool, as well as Apache
|
||||
Range Header attack by causing very significant memory and CPU usage on the
|
||||
server.
|
||||
|
||||
Slowloris and Slow HTTP POST DoS attacks rely on the fact that the HTTP
|
||||
protocol, by design, requires requests to be completely received by the
|
||||
server before they are processed. If an HTTP request is not complete, or if
|
||||
the transfer rate is very low, the server keeps its resources busy waiting
|
||||
for the rest of the data. If the server keeps too many resources busy, this
|
||||
creates a denial of service. This tool is sending partial HTTP requests,
|
||||
trying to get denial of service from target HTTP server.
|
||||
|
||||
Slow Read DoS attack aims the same resources as slowloris and slow POST,
|
||||
but instead of prolonging the request, it sends legitimate HTTP request and
|
||||
reads the response slowly.
|
3
www/slowhttptest/pkg/PLIST
Normal file
3
www/slowhttptest/pkg/PLIST
Normal file
@ -0,0 +1,3 @@
|
||||
@comment $OpenBSD: PLIST,v 1.1.1.1 2012/04/11 13:37:27 sthen Exp $
|
||||
@bin bin/slowhttptest
|
||||
@man man/man1/slowhttptest.1
|
Loading…
Reference in New Issue
Block a user