Section: .. / distributed /
|
Denial of Service tools are for use when testing your own machines only. Use of these tools on a test network is the only way to build a stable network enabled product that will not crash under the load of a distributed packet flood.
|
| /// File Name: |
4to6.tar.gz |
Description:
|
4to6ddos is a distributed denial of service against ipv6 that works without installing ipv6 support. It shoots ipv6 encapsulated in ipv4 packets directly to the ipv4-to-ipv6 tunnels.
| | Author: | Cyrax | | Homepage: | http://www.pkcrew.org | | File Size: | 4089 | | Last Modified: | Dec 3 03:13:57 2000 |
| MD5 Checksum: | 347b6d04412d64d23635013879bdae36 |
|
| /// File Name: |
blitznet.tgz |
Description:
|
Blitznet launches a distributed syn flood attack with spoofed source IP, without logging.
| | Author: | Phreeon | | File Size: | 8055 | | Last Modified: | Dec 9 21:33:31 1999 |
| MD5 Checksum: | c58067ac29321e40ba72d357c136f798 |
|
| /// File Name: |
btodd-whitepaper.txt |
Description:
|
Distributed Denial of Service Attacks have recently emerged as one of the most newsworthy, if not the greatest, weaknesses of the Internet. This paper attempts to explain how they work, why they are hard to combat today, and what will need to happen if they are to be brought under control. Plain text format, PS and HTML available at the homepage, here.
| | Author: | Bennett Todd | | File Size: | 27752 | | Last Modified: | Feb 22 20:57:16 2000 |
| MD5 Checksum: | aa3bb0212d4996647acb70f05d80b4a2 |
|
| /// File Name: |
cisco-newsflash.htm |
Description:
|
Cisco Newsflash - Distributed Denial of Service. Contains information to help you understand how DDoS attacks are orchestrated, recognise programs used to launch DDoS attacks, and apply measures to prevent the attacks (including anti-spoofing commands, egress filtering, RPF and CEF, ACL's, rate limiting for SYN packets). Also contains information on gathering forensic information if you suspect an attack, and learning more about host security.
| | File Size: | 12786 | | Last Modified: | Feb 11 01:14:05 2000 |
| MD5 Checksum: | 7c18c020e8436f0a308e7e315655f43c |
|
| /// File Name: |
d7-pH-orgasm.tgz |
Description:
|
Orgasm v1.0 is a distributed reflection denial of service attack. More information available here.
| | Author: | Phrail | | Homepage: | http://www.divisi0n7.org | | File Size: | 194560 | | Last Modified: | Jun 3 08:26:31 2002 |
| MD5 Checksum: | 1c5a3f2ae8e4f73560831bd942abe4f0 |
|
| /// File Name: |
ddnsf.tar.gz |
Description:
|
Distributed DNS Flooder v0.1b - A powerful attack against DNS servers.
| | Author: | Extirpater | | File Size: | 6233 | | Last Modified: | Mar 27 02:43:53 2001 |
| MD5 Checksum: | 3672dfbec5c48d4a4a8aef930a29c8fa |
|
| /// File Name: |
ddos-routing.txt |
Description:
|
Distributed Deniel Of Service attacks - A proposal based on routing. This paper describes a technique that -hopefully- can be used to defeat the recent DDOS attacks. The solution presented here is bases on routing. It requires a certain amount of extra network infrastructure.
| | Author: | Fernando P. Schapachnik | | File Size: | 5652 | | Last Modified: | Feb 24 22:51:32 2000 |
| MD5 Checksum: | 9734ca3162ae425dbf0a657ff855d34b |
|
| /// File Name: |
ddos-thought.txt |
Description:
|
Some thoughts on the solutions to Distributed Attack Technology - Distribited ownership tools [DOT] exist that scan numerous hosts for vunerabilities that allow agents to be installed automatically. Potential solutions include more host based security, fixing ipv4, legislation, and fighting fire with fire.
| | Author: | The Cat | | File Size: | 5999 | | Last Modified: | Mar 10 09:14:38 2000 |
| MD5 Checksum: | 366c7309dbce3df4ecb3b6cb219300a5 |
|
| /// File Name: |
ddos.sh |
Description:
|
ddos.sh is a tool which causes NT servers which are vulnerable to the unicode bug to pingflood a target host.
| | Author: | MrFloat | | File Size: | 890 | | Last Modified: | May 31 23:45:22 2001 |
| MD5 Checksum: | e88ac6289dc096b5d4948a2a79daa708 |
|
| /// File Name: |
ddos.txt |
Description:
|
DDoS IRC bots are becoming popular Distributed Denial Of Service attack method. They do not require unix clients to operate and are easy to use. Hypnosis
| | File Size: | 6735 | | Last Modified: | Aug 2 04:15:16 2001 |
| MD5 Checksum: | 980ed56098d63fbde886f77e2e9c335c |
|
| /// File Name: |
ddosping.zip |
Description:
|
DDoSPing v2.0 is a Win 9x/NT GUI scanner for the DDoS agents Wintrinoo, Trinoo, Stacheldraht and TFN.
| | Author: | Robin Keir | | Homepage: | http://www.foundstone.com | | File Size: | 9655 | | Last Modified: | Dec 13 07:28:23 2000 |
| MD5 Checksum: | 92dbe2bfc9673ec480aea091b042093b |
|
| /// File Name: |
DDSA_Defense.htm |
Description:
|
Distributed Denial of Service Defense Tactics - This paper details some practical strategies that can be used by system administrators to help protect themselves from distributed denial of service attacks as well as protect themselves from becoming unwitting attack nodes against other companies.
| | Author: | Simple Nomad | | Homepage: | http://razor.bindview.com | | File Size: | 16369 | | Last Modified: | Feb 16 23:57:36 2000 |
| MD5 Checksum: | e1f0aceb853031be5bb2d08b3d12c772 |
|
| /// File Name: |
distributed_metastasis.doc |
Description:
|
A new model of computer penetration: distributed metastasis, increases the possible depth of penetration for an attacker, while minimizing the possibility of detection. Distributed Metastasis is a non-trivial methodology for computer penetration, based on an agent based approach, which points to a requirement for more sophisticated attack detection methods and software to detect highly skilled attackers.
| | Author: | Andrew J. Stewart | | File Size: | 30889 | | Last Modified: | Aug 17 02:07:14 1999 |
| MD5 Checksum: | f60d02052189d8734d7fffdbc76eb779 |
|
| /// File Name: |
dkbf-0.1.1b.tar.gz |
Description:
|
Dkbf is a Distributed, Keyboard, Brute-Force program, written in C, for Linux clusters that attacks Windows NT Lanman and NT hashes using the Message Passing Interface (MPI) to distribute the program L0phtCrack by the L0pht.
| | Author: | d4 b0rg | | Homepage: | http://dkbf.sourceforge.net | | File Size: | 72735 | | Last Modified: | Feb 12 04:10:11 2001 |
| MD5 Checksum: | aaedea360d47defffc39674d9a833889 |
|
| /// File Name: |
DOSnet.c |
Description:
|
DOSnet.c is a ddos script which runs from root and connects to an IRC network to take commands via ctcp.
| | Author: | Thomas O'Connor | | Homepage: | http://www.thomasoconnor.org | | File Size: | 22904 | | Last Modified: | Sep 5 07:25:18 2002 |
| MD5 Checksum: | ccb171ef33fc0b55ab93d94d2c24b1bb |
|
| /// File Name: |
dps-001.tgz |
Description:
|
Distributed Port Scanner - The idea is that by having multiple systems from different classes of networks scan a host, detection of a portscan is more difficult by the target system. The user runs a central server which tells each client which port to scan next. Clients send the results to the server and are issued a new port to check.
| | Homepage: | http://www.geocities.com/bechberger | | File Size: | 71680 | | Last Modified: | Dec 12 04:18:18 2000 |
| MD5 Checksum: | 75ecc374eba684aa3ceecf33e449cf11 |
|
| /// File Name: |
drdos_v2.0.tar.gz |
Description:
|
Drdos v2.0 is a tool for distributed reflection denial of service attacks.
| | Author: | Gml | | File Size: | 2220 | | Last Modified: | May 15 06:26:59 2002 |
| MD5 Checksum: | 51c01a8a1fede2b84f8a0bba1138d892 |
|
| /// File Name: |
dscan-0.4.tar.gz |
Description:
|
A simple distributed port scanner that uses many computers to conduct a port scan which should make it harder to trace the source. This release of dscan has many improvements of the last release, for a full list see the HISTORY file in the archive. Dscan started off as proof of concept code and has now turned into a project for testing new techniques such as linked lists. This release does not come with UDP port scanning support but a patch file should be available in a few days time to add UDP support.
| | Author: | Andrew Kay | | File Size: | 11145 | | Last Modified: | Jan 7 22:43:44 2000 |
| MD5 Checksum: | 3c2bb813c280c1a902e2f385e8c0a543 |
|
| /// File Name: |
dsit_workshop.pdf |
Description:
|
Results of the Distributed-Systems Intruder Tools Workshop (Nov 2-4, 1999). Several distributed intruder tools are in widespread use now, and the technology is maturing. As a result, a single command from an attacker can result in tens of thousands of concurrent attacks.
| | Author: | Clarissa Cook, Richard Kemmerer, and David Dittrich | | File Size: | 64532 | | Last Modified: | Dec 9 22:21:08 1999 |
| MD5 Checksum: | b69cb60c78ff79ee69d4513e534245f9 |
|
| /// File Name: |
find_ddos_v31_intel.tar.Z |
Description:
|
Find_ddos Version 3.1 (solaris intel) - In response to a number of recent distributed denial-of-service (DDOS) attacks that have been reported, the NPIC has developed a tool to assist in combating this threat. The tool (called "find_ddos") is intended to scan a local system that is either known or suspected to contain a DDOS program. It is capable of scanning executing processes on Solaris 2.6 or later, and of scanning local files on a Solaris 2.x (or later) system. The tool will detect several known denial-of-service attack tools including tfn2k client, tfn2k daemon, trinoo daemon, trinoo master, tfn daemon, tfn client, stacheldraht master, stacheldraht client, stachelddraht demon and tfn-rush client.
| | Homepage: | http://www.fbi.gov/nipc/trinoo.htm | | File Size: | 54470 | | Last Modified: | Feb 7 21:53:59 2000 |
| MD5 Checksum: | 48dccf4539bc56e7569868617f3393b6 |
|
| /// File Name: |
find_ddos_v31_linux.tar.Z |
Description:
|
Find_ddos Version 3.1 (linux) - In response to a number of recent distributed denial-of-service (DDOS) attacks that have been reported, the NPIC has developed a tool to assist in combating this threat. The tool (called "find_ddos") is intended to scan a local system that is either known or suspected to contain a DDOS program. It is capable of scanning executing processes on Solaris 2.6 or later, and of scanning local files on a Solaris 2.x (or later) system. The tool will detect several known denial-of-service attack tools including tfn2k client, tfn2k daemon, trinoo daemon, trinoo master, tfn daemon, tfn client, stacheldraht master, stacheldraht client, stachelddraht demon and tfn-rush client.
| | Homepage: | http://www.fbi.gov/nipc/trinoo.htm | | File Size: | 358839 | | Last Modified: | Feb 7 21:53:55 2000 |
| MD5 Checksum: | e2687f1cfaa3cca954836fa8a1846eb8 |
|
| /// File Name: |
find_ddos_v31_sparc.tar.Z |
Description:
|
Find_ddos Version 3.1 (sparc) - In response to a number of recent distributed denial-of-service (DDOS) attacks that have been reported, the NPIC has developed a tool to assist in combating this threat. The tool (called "find_ddos") is intended to scan a local system that is either known or suspected to contain a DDOS program. It is capable of scanning executing processes on Solaris 2.6 or later, and of scanning local files on a Solaris 2.x (or later) system. The tool will detect several known denial-of-service attack tools including tfn2k client, tfn2k daemon, trinoo daemon, trinoo master, tfn daemon, tfn client, stacheldraht master, stacheldraht client, stachelddraht demon and tfn-rush client.
| | Homepage: | http://www.fbi.gov/nipc/trinoo.htm | | File Size: | 53336 | | Last Modified: | Feb 7 21:53:49 2000 |
| MD5 Checksum: | 53ca1f544fdab923a56e0065bea60b54 |
|
| /// File Name: |
find_ddos_v3_intel.tar.z |
Description:
|
Find_ddos Version 3 (intel) - In response to a number of recent distributed denial-of-service (DDOS) attacks that have been reported, the NPIC has developed a tool to assist in combating this threat. The tool (called "find_ddos") is intended to scan a local system that is either known or suspected to contain a DDOS program. It is capable of scanning executing processes on Solaris 2.6 or later, and of scanning local files on a Solaris 2.x (or later) system. The tool will detect several known denial-of-service attack tools.
| | Homepage: | http://www.fbi.gov/nipc/trinoo.htm | | Changes: | Detects tfn2k client, tfn2k daemon, trinoo daemon, trinoo master, tfn daemon, tfn client, stacheldraht master, stacheldraht client, stachelddraht demon and tfn-rush client. This new version (find_ddosV3) is now available for Solaris on Sparc or Intel platforms and will no longer improperly identify itself or any previous version as a DDOS program. | | File Size: | 50898 | | Last Modified: | Jan 13 20:29:27 2000 |
| MD5 Checksum: | 22d01a06fd182104f09252cc95accee7 |
|
| /// File Name: |
find_ddos_v3_sparc.tar.z |
Description:
|
Find_ddos Version 3 (sparc) - In response to a number of recent distributed denial-of-service (DDOS) attacks that have been reported, the NPIC has developed a tool to assist in combating this threat. The tool (called "find_ddos") is intended to scan a local system that is either known or suspected to contain a DDOS program. It is capable of scanning executing processes on Solaris 2.6 or later, and of scanning local files on a Solaris 2.x (or later) system. The tool will detect several known denial-of-service attack tools.
| | Homepage: | http://www.fbi.gov/nipc/trinoo.htm | | Changes: | Detects tfn2k client, tfn2k daemon, trinoo daemon, trinoo master, tfn daemon, tfn client, stacheldraht master, stacheldraht client, stachelddraht demon and tfn-rush client. This new version (find_ddosV3) is now available for Solaris on Sparc or Intel platforms and will no longer improperly identify itself or any previous version as a DDOS program. | | File Size: | 49436 | | Last Modified: | Jan 13 20:25:21 2000 |
| MD5 Checksum: | 0ca230338f56b5d8ee6b538be77abddc |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
