DOS Methods. Dos stands for Denial Of Service, so as the name implies, I denies your internet service. Dos attacks are used to take down people home connections and web servers with layer 4 floods and websites and servers with layer 7 floods. Internet Control Message Protocol (ICMP) flood: A type of ICMP flood, called a Smurf attack, is where you are sending packets to a network with an IP address which is spoofed to be the actual victims IP address. This then promptly uses up all the networks bandwidth and stops real packets from being processed. SYN flood The easiest way I can explain SYN floods is like this. Think of a website and it has a limited number of connections available, say 20 for demonstration purposes. This attack method will send TCP packets to the website, these packets are understood as connection requests by the website. This means there is now a half connection. Heres where the clever part is, because the IP address is forged to be the actual victims, the requests never get accepted from the other side, so the half open connection is left there. Due to the fact that the website can only have 20 connections it cant let anyone else connect, it is theoretically saying Sorry lads, I have 20 connections already, Im full. Wait till there is more connections available. Teardrop attacks Teardrop attacks are like sending bits of an IP with over-sized payloads to the specific target. This causes systems to crash due to the fact that they had bugs in their coding. Low-rate Denial-of-Service attacks As simply as I can explain it is that LDos attacks are like sending high rate TCP packets, but every so often. Asymmetry of resource utilization in starvation attacks This type of attack is basically self explanatory from the name, you theoretically consume the resources on the victims computer. In order to perform this attack you must either have a: - Computer with more power/larger network bandwidth. - Have a botnet and order the slaves to attack as a group. - Gain access to a computer on the victims network. Permanent denial-of-service attacks PDos attacks are, in noob terms, attacks which ruin the victims server so bad that in results in having to replace hardware. These attacks are done by using exploits in security flaws on the server. Application-level floods Types of Application-level floods such as buffer overflow use the software on the server, the make the software confused and fill all disk space. Nuke In simple terms, the nuke method sends invalid packets to a computer network, these packets cause the computers to slow down until they come to a complete halt. R-U-Dead-Yet? (RUDY) Rudy attacks deprive a web server of current sessions, this means it stops all sessions with never ending HTTP post exchanges.
Posted on: Sun, 03 Nov 2013 03:56:23 +0000
Trending Topics
Recently Viewed Topics
© 2015