Archive for the ‘DDoS’ category

1. DDoS Tracefile for SharkFest Europe 2021

   SharkFest Europe has opened it’s doors for the pre-conference classes. Presentations will start on June, 17th. I am honored to give a presentation on DDoS attacks. The trace files for the presentation are available for download at http://www.packet-foo.com/blog/SF21EU/DDoS_Tracefiles.zip The Zip file contains five traces: FreakOut_Flooding.pcapng Shows the UDP Flood, TCP Flood, SYN Flood and Slowloris attacks […]

2. Introducing DNS Hammer, Part 2: Auditing a Name Server’s Rate Limiting Configuration

   Introducing DNS Hammer, Part 2: Introducing a new tool Part one of the series discusses DNS reflection attacks and DNS rate limiting. This post shows how to use DNS Hammer to audit a DNS server’s rate limit configuration. A dedicated web site https://www.dnshammer.com offers the tool for download and instructions how to use it.

3. Introducing DNS Hammer, Part 1: DDoS Analysis – From DNS Reflection to Rate Limiting

   This article discusses DNS reflection, a technique used in DDoS attacks. DNS rate limiting can be used as mitigation against DNS reflection attacks. This paves the way to our new tool DNS Hammer. The program can help auditing a DNS server’s rate limiting configuration.