Successfully reported this slideshow.
Your SlideShare is downloading. ×

DDoS Attacks and Countermeasures

Jun. 08, 2007
4 likes 6,370 views
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Upcoming SlideShare
How to launch and defend against a DDoS
How to launch and defend against a DDoS
Loading in …3
×

Check these out next

DDoS 101: Attack Types and Mitigation
Cloudflare
Assingement on dos ddos
kalyan kumar
What is DDoS ?
Vikas Phonsa
Ddos and mitigation methods.pptx
Ozkan E
DDoS Attack and Mitigation
Devang Badrakiya
DrupalCon Vienna 2017 - Anatomy of DDoS
Suzanne Aldrich
DDoS Attacks
Jignesh Patel
Denial of service
garishma bhatia
1 of 40 Ad

DDoS Attacks and Countermeasures

Jun. 08, 2007
4 likes 6,370 views

Download to read offline

Technology News & Politics

DDoS Attacks and Countermeasures

DDoS Attacks and Countermeasures

Technology News & Politics
Advertisement

Recommended

How to launch and defend against a DDoS
jgrahamc
194.4k views
29 slides
DDoS mitigation EPIC FAIL collection - 32C3
Moshe Zioni
1.1k views
63 slides
DNS DDoS Attack and Risk
Sukbum Hong
6.9k views
26 slides
Anatomy of DDoS - Builderscon Tokyo 2017
Suzanne Aldrich
2.4k views
30 slides
12 types of DDoS attacks
Haltdos
1.9k views
18 slides
The Anatomy of DDoS Attacks
Acquia
715 views
24 slides
Denail of Service
Ramasubbu .P
4.4k views
21 slides
What is ddos attack
Dosarrest007
119 views
4 slides
Advertisement

More Related Content

Slideshows for you (20)

DDoS 101: Attack Types and Mitigation
Cloudflare
2.7k views
Assingement on dos ddos
kalyan kumar
1.2k views
What is DDoS ?
Vikas Phonsa
176 views
Ddos and mitigation methods.pptx
Ozkan E
517 views
DDoS Attack and Mitigation
Devang Badrakiya
92 views
DrupalCon Vienna 2017 - Anatomy of DDoS
Suzanne Aldrich
482 views
DDoS Attacks
Jignesh Patel
24.9k views
Denial of service
garishma bhatia
765 views
BADCamp 2017 - Anatomy of DDoS
Suzanne Aldrich
434 views
DDos
rohit verma
648 views
Denial of services : limiting the threat
SensePost
849 views
Ddos
university of Gujrat, pakistan
55 views
Ricardo de Oliveria Schmidt - DDoS Attacks on the Root DNS
Michiel Cazemier
868 views
DDOS Attack
Ahmed Salama
222 views
Compression Oracle Attacks on VPN Networks
Priyanka Aash
157 views
IPv6 Threat Presentation
johnmcclure00
296 views
DNS Security
johnmcclure00
756 views
Water Torture: A Slow Drip DNS DDoS Attack on QTNet by Kei Nishida [APRICOT 2...
APNIC
9.1k views
External to DA, the OS X Way
Stephan Borosh
6.7k views
Botconf ppt
Cloudflare
3.2k views
DDoS 101: Attack Types and Mitigation
Cloudflare
2.7k views
17 slides
Assingement on dos ddos
kalyan kumar
1.2k views
30 slides
What is DDoS ?
Vikas Phonsa
176 views
8 slides
Ddos and mitigation methods.pptx
Ozkan E
517 views
47 slides
DDoS Attack and Mitigation
Devang Badrakiya
92 views
21 slides
DrupalCon Vienna 2017 - Anatomy of DDoS
Suzanne Aldrich
482 views
32 slides

Viewers also liked (6)

Introduction to the municipal freedom of information and protection of privac...
Guinsly Mondesir
552 views
Ddos attacks
communication-eg
1.5k views
What is a 0 day exploit?
Guinsly Mondesir
1.1k views
spyware
Akhil Kumar
10.2k views
Spyware Adware1
rubal_9
5.4k views
Stopping zero day threats
Zscaler
2.9k views
Introduction to the municipal freedom of information and protection of privac...
Guinsly Mondesir
552 views
9 slides
Ddos attacks
communication-eg
1.5k views
5 slides
What is a 0 day exploit?
Guinsly Mondesir
1.1k views
9 slides
spyware
Akhil Kumar
10.2k views
16 slides
Spyware Adware1
rubal_9
5.4k views
21 slides
Stopping zero day threats
Zscaler
2.9k views
39 slides
Advertisement

Similar to DDoS Attacks and Countermeasures (20)

Null HYD VRTDOS
Raghunath G
3k views
Hacking Client Side Insecurities
amiable_indian
2.5k views
Teflon - Anti Stick for the browser attack surface
Saumil Shah
2.2k views
Ajax to the Moon
davejohnson
1.4k views
Universal DDoS Mitigation Bypass
Albert Hui
2.4k views
DEF CON 27 - BEN SADEGHIPOUR - owning the clout through ssrf and pdf generators
Felipe Prado
128 views
How To Be A Hacker
Paul Tarjan
6.1k views
Higher Order WordPress Security
Dougal Campbell
2.2k views
WebSockets with PHP: Mission impossible
Yoan-Alexander Grigorov
6.7k views
Identifying Web Servers: A First-look Into the Future of Web Server Fingerpri...
Jeremiah Grossman
1.1k views
XSS Without Browser
kosborn
3.4k views
Web performance optimization
Kaliop-slide
1.7k views
Enterprise AIR Development for JavaScript Developers
AndreCharland
1.4k views
5 single page application principles developers need to know
Chris Love
10.6k views
Offline of web applications
FDConf
3.3k views
Offline for web - Frontend Dev Conf Minsk 2014
Jan Jongboom
2.3k views
Site Performance - From Pinto to Ferrari
Joseph Scott
3.5k views
Web Development Presentation
TurnToTech
1.1k views
Drive By Downloads: How To Avoid Getting a Cap Popped in Your App
Cenzic
246 views
Frontend Crash Course
TJ Stalcup
143 views
Null HYD VRTDOS
Raghunath G
3k views
61 slides
Hacking Client Side Insecurities
amiable_indian
2.5k views
40 slides
Teflon - Anti Stick for the browser attack surface
Saumil Shah
2.2k views
48 slides
Ajax to the Moon
davejohnson
1.4k views
87 slides
Universal DDoS Mitigation Bypass
Albert Hui
2.4k views
44 slides
DEF CON 27 - BEN SADEGHIPOUR - owning the clout through ssrf and pdf generators
Felipe Prado
128 views
49 slides

Recently uploaded (20)

types of media.pptx
MaricelBongcayaoSina
0 views
Deep Learning.pptx
YagnaDakshina
0 views
Covid-19 Segmentation of Lung CT images.pptx
YagnaDakshina
0 views
The Practice of Enterprise Architecture - 2nd Edition - Book Review
Ashraf Fouad
0 views
PETplanet Insider.pdf
PET Technologies
0 views
Role of Intelligent Robotic Process Automation (RPA) in Artificial Intelligen...
Cerebrum Infotech
0 views
Process for obtaining levulinic acid esters, in particular alkyl levulinates
Toscana Open Research
0 views
Russia vs Estonia_First Cyber War (2007)
Papadakis K.-Cyber-Information Warfare Analyst & Cyber Defense/Security Consultant-Hellenic MoD
0 views
securing-your-software-delivery-pipelines-with-a-slight-shift-to-the-left.pdf
Melissa Kaulfuss
0 views
Transforming Learning- The 5 Education Tech Trends You Can't Miss in 2023.pdf
AeoLogic Technologies
0 views
Decentralized brokered enabled ecosystem for data marketplace.pdf
BokoloTonny
0 views
Refurbished_vs._New_Laptops_Which_is_the_Better_Value2.pdf
Used Store
0 views
3. Venn Diagram.pptx
EllenGrace9
0 views
THE STOCK MARKET VOLATILITY RESEARCH BETWEEN CHINA AND ASEAN BASED ON COMPLEX...
IJCI JOURNAL
0 views
First Ever Indian Rupee Pegged Stablecoin
indt coin
0 views
Splunk Partner Academy - 21 March 2023
Splunk
0 views
ChatGPTAGameChangerinEducation.pdf
Ogunleye Samuel
0 views
Stand Out from the Crowd- 5 Ways to Freshen Up Your IT Resume
AeoLogic Technologies
0 views
Cybersecurity.pdf
RushiDalve
0 views
Labincushaker - Incubator Shaker
labindia
0 views
types of media.pptx
MaricelBongcayaoSina
0 views
7 slides
Deep Learning.pptx
YagnaDakshina
0 views
15 slides
Covid-19 Segmentation of Lung CT images.pptx
YagnaDakshina
0 views
13 slides
The Practice of Enterprise Architecture - 2nd Edition - Book Review
Ashraf Fouad
0 views
19 slides
PETplanet Insider.pdf
PET Technologies
0 views
2 slides
Role of Intelligent Robotic Process Automation (RPA) in Artificial Intelligen...
Cerebrum Infotech
0 views
10 slides
Advertisement

DDoS Attacks and Countermeasures

  1. 1. DDoS Attacks & Countermeasures <ul><li>Duong Ngoc Thai </li></ul><ul><li><thaidn AT gmail DOT com> </li></ul>http://vnhacker.blogspot.com
  2. 2. Hello!
  3. 3. Overview <ul><li>DDoS Attacks </li></ul><ul><ul><li>What's new? </li></ul></ul><ul><li>DDoS Countermeasures </li></ul><ul><ul><li>What NOT to do? </li></ul></ul><ul><ul><li>What to do? </li></ul></ul><ul><li>Q & A </li></ul>
  4. 4. Part I <ul><li>DDoS Attacks – What's new? </li></ul><ul><ul><li>Botnet Attacks </li></ul></ul><ul><ul><ul><li>DRDoS </li></ul></ul></ul><ul><ul><ul><li>Distributed Reflected DNS Attacks </li></ul></ul></ul><ul><ul><li>xFlash Attacks </li></ul></ul><ul><ul><ul><li>HTTP-based applications </li></ul></ul></ul><ul><ul><ul><li>Welcome to the brave new world of Flash 9 Socket </li></ul></ul></ul>
  5. 5. What is botnet?
  6. 6. DDoS Attacks through Botnet <ul><li>Traditional DDoS Attacks </li></ul><ul><li>DRDoS </li></ul>
  7. 7. DDoS Attacks through Botnet <ul><li>Distributed Reflected DNS Attacks </li></ul>
  8. 8. Okay, botnet is scary . But wait, there's no botnet in VN, YET!
  9. 9. Bad news: building a botnet is easy! <ul><ul><li>bot source code is available for free! some even released under GPL ! </li></ul></ul>
  10. 10. Bad news: building a botnet is easy! <ul><ul><li>Gái đẹp online đây bà con ơi!!!! Remember </li></ul></ul><ul><ul><li>gaixinh or xRobot ? </li></ul></ul>
  11. 11. Bad news: building a botnet is easy! <ul><ul><li>I don't want to pay for software! </li></ul></ul><ul><ul><li>ever wonder what those keygen.exe or crack.exe </li></ul></ul><ul><ul><li>actually do? </li></ul></ul><ul><ul><li>no license --> no update --> hack me please! </li></ul></ul><ul><ul><li>(hint: use Linux ) </li></ul></ul>
  12. 12. Bad news: building a botnet is easy! <ul><ul><li>can't build yourself? buy one online! </li></ul></ul>
  13. 13. Vietnam Botnet Factbook
  14. 14. What's xFlash? <ul><ul><li>ActionScript in Flash can send HTTP requests to 3rd party sites through the browser which invoked it. </li></ul></ul>
  15. 15. What's xFlash? <ul><ul><li>The main DDoS attack mechanism used to attack many websites in VN: hvaonline.net, vietco.com, ddth.com , <insert your sites here>, etc... </li></ul></ul>
  16. 16. xFlash to attack HTTP-based applications <ul><li><insert x-flash source code here> </li></ul>
  17. 17. xFlash to attack HTTP-based applications <ul><li>forging HTTP request headers </li></ul><ul><li>var req:LoadVars=new LoadVars(); </li></ul><ul><li>req.addRequestHeader(&quot;Foo&quot;,&quot;Bar&quot;); </li></ul><ul><li>req.send(&quot;http://www.site.com/index.php&quot;,&quot;_blank&quot;,&quot; GET &quot;); </li></ul>
  18. 18. xFlash to attack HTTP-based applications <ul><li>forging HTTP request headers </li></ul><ul><li>var req:LoadVars=new LoadVars(); </li></ul><ul><li>req.addRequestHeader(&quot;Foo&quot;,&quot;Bar&quot;); </li></ul><ul><li>req.decode(&quot;a=b&c=d&quot;); </li></ul><ul><li>req.send(&quot;http://www.site.com/index.php&quot;,&quot;_blank&quot;,&quot; POST &quot;); </li></ul>
  19. 19. Welcome to The Brave New World of Flash 9 Socket <ul><li>Quote from Flash 9 documentation </li></ul><ul><li>“ The Socket class enables ActionScript code to make socket connections and to read and write raw binary data. The Socket class is useful for working with servers that use binary protocols.” </li></ul>
  20. 20. Welcome to The Brave New World of Flash 9 Socket <ul><li>Quote from Flash 9 documentation </li></ul><ul><li>“ The Socket class enables ActionScript code to make socket connections and to read and write raw binary data. The Socket class is useful for working with servers that use binary protocols.” </li></ul>Let's port nmap to ActionScript !
  21. 21. Welcome to The Brave New World of Flash 9 Socket <ul><li>Quote from Flash 9 documentation </li></ul><ul><li>“ The Socket class enables ActionScript code to make socket connections and to read and write raw binary data. The Socket class is useful for working with servers that use binary protocols.” </li></ul><ul><li>Let's port nmap to ActionScript ! </li></ul><ul><ul><li>Err wait, how about same origin policy ? </li></ul></ul>
  22. 22. Part II <ul><li>DDoS Countermeasures </li></ul><ul><ul><li>DON'T </li></ul></ul><ul><ul><ul><li>.htaccess </li></ul></ul></ul><ul><ul><ul><li>referer checking </li></ul></ul></ul><ul><ul><ul><li>PHP anti-DDoS script </li></ul></ul></ul><ul><ul><li>DOs </li></ul></ul><ul><ul><ul><li>performance tuning - killing the bottlenecks </li></ul></ul></ul><ul><ul><ul><li>start small, think big </li></ul></ul></ul><ul><ul><ul><li>defense in depth </li></ul></ul></ul>
  23. 23. First thing first: SHOW ME THE MONEY
  24. 24. Security is always a trade-off
  25. 25. The Art Of Performance Tuning <ul><li>What is performance? </li></ul>
  26. 26. The Art Of Performance Tuning <ul><li>What is performance? </li></ul><ul><li>rps = requests per second </li></ul><ul><li>cu = concurrent users </li></ul>
  27. 27. Howto Find The Bottlenecks <ul><li>code profiling – xdebug </li></ul><ul><li>system profiling – oprofile </li></ul><ul><li>database query profiling </li></ul>
  28. 28. Caching's Your Good Friend, Always <ul><li>opcode caching – APC, Zend Platform </li></ul><ul><li>object caching – memcached </li></ul><ul><li>http request caching - squid </li></ul>
  29. 29. Start Small Think BIG <ul><li>what is scalability? </li></ul>
  30. 30. Start Small Think BIG <ul><li>what is scalability? </li></ul><ul><li>readily enlarged </li></ul><ul><li>what is scalable system? </li></ul><ul><ul><li>able to accommodate increased usage </li></ul></ul><ul><ul><li>able to accommodate an increased dataset </li></ul></ul><ul><ul><li>maintainable </li></ul></ul>
  31. 31. Hello, world! Is Very Scalable <ul><li><?php </li></ul><ul><li>sleep(1); </li></ul><ul><ul><li>echo “Hello, world!”; </li></ul></ul><ul><li>?> </li></ul>
  32. 32. Verizontal vs Horizontal Scaling
  33. 33. Share Nothing Architecture
  34. 34. Scaling The Database With SNA
  35. 35. Scaling The Storage <ul><li>Amazon S3 anybody? </li></ul>
  36. 36. Wikipedia: a scalable system
  37. 37. The Blueprint of Defense In Depth
  38. 38. The case for the reverse proxy
  39. 39. Recommend Reading <ul><li>Building scalable web sites </li></ul><ul><li>Kí sự các vụ DDoS vào HVAOnline.net </li></ul>
  40. 40. DDoS Attacks & Countermeasures <ul><li>Thank you! </li></ul><ul><li>Questions/Comments? </li></ul>Duong Ngoc Thai

×