| OSI 层级 | 攻击内容 |
| Network Based (2-4层) | IP Fragment |
| Tear Drop | |
| SYN Flood (Dirt Jumper) | |
| TCP (connection) Flood | |
| e.g. SYN-ACK, ACK & PUSH-ACK, RST or FIN and Fragmented ACK | |
| Christmas Tree | |
| Fake Session | |
| LAND | |
| Redirect Traffic Attack | |
| ICMP Flood, Ping Floods and SMURF Attacks | |
| Ping of Death ICMP | |
| DNS based (4层) | UDP Flood |
| UDP Fragment | |
| DNS Flood (Distributed and DNS Blacklisting) | |
| e.g. DNS UDP Flood, DNS Query Flood and DNS NXDOMAIN Flood | |
| SSL/TLS based (5–6层) | SSL Floods, Malformed SSL (e.g. empty SSL HELLO) |
| SSL THC attack (Extending from SSL Renegotiation vulnerability) | |
| Application based (6–7层) | Slowloris (Nuclear DDoSer, Slowhttptest) |
| Keep-Dead | |
| Slow POST (R-U-Dead-Yet, Tor Hammer, Nuclear DDoSer, Slowhttptest) | |
| HashDoS | |
| Apache Killer (Slowhttptest) | |
| HTTP GET Flood, Recursive GET Flood (Web Scraping), Dirt Jumper (HTTP Flood) | |
| #RefRef (exploit SQLi - OWASP Top 10 vulnerability as entry) | |
| XML “Bomb” (DTD attack), XML External Entity DoS |
LOIC 可执行TCP flood、UDP flood和HTTP flood,下载地址:https://sourceforge.net/projects/loic/
slowhttptest 下载地址:https://github.com/shekyan/slowhttptest/wiki,
slowhttptest参数中文说明:http://blog.youkuaiyun.com/wanghuiqi2008/article/details/54344223
扫一扫
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
