Website Takedown with the “Slowloris DoS Attack”

April 12, 2018 | Views: 2167

Begin Learning Cyber Security for FREE Now!

FREE REGISTRATIONAlready a Member Login Here

 

A DoS attack is a type of attack where an attacker can suspend services of a host or a website by sending a large amount of traffic and making request constantly from two or more computer or by sending a large number of the packet which makes small servers overload and server goes crash and result “Destination unreachable.”

Here I am going to DOS using Perl base program name Slowloris developed by Robert “RSnake” Hansen. Slowloris is a very useful program which allows a single machine to take down another machine’s web server with minimal bandwidth and side effects on unrelated services and ports. It keeps connection open of the target and keeps sending a request, and after some time some become unresponsive to another request which results in server down. It is straightforward to use this program for which I am going to give step by step tutorial below.

STEP 1 As I said it’s Perl base program, mostly I use this program on some Linux distro but I will use Windows this time so that lots of users can use this. So to run this program, you have to install Per on your computer so first download Perl from: HERE

STEP 2: In this step, you have to copy some text from the Slowloris and paste it to your notepad but for saving time I have already done these steps for you, so you have to download this slowloris program from here: DOWNLOAD

STEP 3: Save it to your c drive, for example, c:”slowloris.”

STEP 4: Now go to command and type cd:

STEP 5 Now type slow.pl to run Slowloris.pl to check you have done the above steps correctly or not. If you have done the steps correctly, then you will see Slowloris.

STEP 4 OK now you have to choose your target as I am going to attack a vulnerable website, here you don’t need to ping the site to get the IP address

STEP 5 OK now we came to the main point in the command type “slow.pl -DNS www.yourtarget.com -port 80 -timeout 500 -num 500 -tcpto 5 -httpready 

Now Slowloris will start sending packets to your target.

 

And now after waiting some time the site has been taken down as you can see I am pinging to google to prove that my internet is working. 

 

 

If you want to make it more powerful then run multiple Slowloris attacks as shown below

but watch out for CPU heat and process

 

DISCLAIMER:
This post is for educational purpose only. It depends on the user how do they use it for, I (and developers) are not responsible for any damage cause by the program that user did.

 

Share with Friends
FacebookTwitterGoogle+LinkedInEmail
Use Cybytes and
Tip the Author!
Join
Share with Friends
FacebookTwitterGoogle+LinkedInEmail
Ready to share your knowledge and expertise?
Comment on This

You must be logged in to post a comment.

Our Revolution

We believe Cyber Security training should be free, for everyone, FOREVER. Everyone, everywhere, deserves the OPPORTUNITY to learn, begin and grow a career in this fascinating field. Therefore, Cybrary is a free community where people, companies and training come together to give everyone the ability to collaborate in an open source way that is revolutionizing the cyber security educational experience.

Cybrary On The Go

Get the Cybrary app for Android for online and offline viewing of our lessons.

Get it on Google Play
 

Support Cybrary

Donate Here to Get This Month's Donor Badge

 
Skip to toolbar

We recommend always using caution when following any link

Are you sure you want to continue?

Continue
Cancel