Section: .. / distributed /
|
Denial of Service tools are for use when testing your own machines only. Use of these tools on a test network is the only way to build a stable network enabled product that will not crash under the load of a distributed packet flood.
|
| /// File Name: |
trinoo.analysis.txt |
Description:
|
The following is an analysis of the DoS Project's "trinoo" (a.k.a. "trin00") master/slave programs, which implement a distributed network denial of service tool. Trinoo daemons were originally found in binary form on a number of Solaris 2.x systems, and probably being set up on hundreds, perhaps thousands, of systems on the Internet that are being compromised by remote buffer overrun exploitation.
| | Author: | David Dittrich | | File Size: | 55408 | | Last Modified: | Aug 17 02:07:14 1999 |
| MD5 Checksum: | 850306089225ee486a29ed60b7f5dd71 |
|
| /// File Name: |
trinoo.tgz |
Description:
|
Trinoo daemon source - Implements a distributed denial of service attack. Controlled via UDP.
| | File Size: | 13941 | | Last Modified: | Dec 9 21:21:13 1999 |
| MD5 Checksum: | a7d1bda7617f17b021617ae3c782fc6e |
|
| /// File Name: |
Turner.mstream |
Description:
|
In response to the surfacing of the mstream attack tool and the published analysis of its inner workings, a set of SNP-L scripts and attack signatures has been developed which allow one to detect and decode "mstream" network activity.
| | Author: | Elliot Turner | | File Size: | 27299 | | Last Modified: | May 2 22:43:24 2000 |
| MD5 Checksum: | 9fe3b07b46660086a0866f329d0fa694 |
|
| /// File Name: |
UDPer.asm |
Description:
|
UDPer is a logic bomb written in ASM for Windows which floods a victim with packets at a certain date.
| | Author: | Frost_Byte | | File Size: | 6155 | | Last Modified: | Jul 24 19:11:22 2000 |
| MD5 Checksum: | 09825a75cecb5dea72f26eddaa024528 |
|
| /// File Name: |
UW-CSE-00-02-01.tgz |
Description:
|
This paper describes a technique for tracing anonymous attacks in the Internet back to their source. This work is motivated by the increased frequency and sophistication of denial-of-service attacks and by the difficulty in tracing packets with incorrect, or ``spoofed'', source addresses. In this paper we describe a general purpose traceback mechanism based on probabilistic packet marking in the network. Our approach allows a victim to identify the network path(s) traversed by an attacker without requiring interactive operational support from Internet Service Providers (ISPs). Moreover, this traceback can be performed ``post-mortem'' -- after an attack has completed. We present one implementation of this technology that is incrementally deployable, (mostly) backwards compatible and can be efficiently implemented using conventional technology. In pdf and postscript format.
| | Author: | Stefan Savage | | Homepage: | http://www.cs.washington.edu/homes/savage/ | | File Size: | 164581 | | Last Modified: | Feb 11 20:04:48 2000 |
| MD5 Checksum: | efe5d0155497aada70fa6594c60433e0 |
|
| /// File Name: |
webdevil-v1.tar.gz |
Description:
|
Webdevil is a tool used to create a distributed performance test against webservers by keeping connections alive until the server times them out. Slave daemon is included to assist in stress testing.
| | Author: | Mike Jackson | | File Size: | 3332 | | Last Modified: | May 17 04:51:34 2004 |
| MD5 Checksum: | 56e37bef1c7c45d2b7a6d99f143f0ccf |
|
| /// File Name: |
yahoo.txt |
Description:
|
Technical details of the attack on Yahoo! last week. Includes information on what kind of packets were sent, how they were affected, and how they fixed it.
| | File Size: | 5766 | | Last Modified: | Feb 17 19:20:52 2000 |
| MD5 Checksum: | 4da5382bb2001defe0ab0207cdf348dd |
|
| /// File Name: |
zmbscap-0.1.tar.gz |
Description:
|
The zombie scapper is an automated perl tool for detecting and stopping distributed denial of service programs. The tool automatically searches and scans the desired target for programs by looking for the ports that are used by the zombie masters. It stops the zombie masters by sending a kill/stop trigger.
| | Homepage: | http://www.metaeye.org/projects/zmbscap/ | | File Size: | 11675 | | Last Modified: | Feb 20 02:15:49 2007 |
| MD5 Checksum: | cc93207baf3dcbcf2b16c9293accbba7 |
|
| /// Directory: |
/ zombie / |
Description:
|
Zombie Zapper is a utility which attempts to command a remote DDOS agent to stop flooding. Works if the default password / port is not changed.
| | Total Files: | 7 | | Last Modified: | Sep 14 09:06:07 2004 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
