|
-
March 31st, 2008, 08:22 PM
#1
DDOS testing tools
Hey gang, it is has been a while since I posted here... work has kept me buried and RL has been in the way of doing "fun" stuff lately too 
Anyway, here is a quick run down and background of what I am asking for. I work for a large ecommerce company, no I won't share the name right now. Anyway over the past few months they have been receiving some fairly hardcore DDoS attacks. I have been able to help them fend off this stuff but it is always a manual process. We have some beefy routers, some beefy switches and some beefy firewalls but they all will bow to the pressure of a large DDoS.
Anyway, I talked them in to buying a pretty nifty product (Cisco Guard) and we will be implementing it soon. I'm almost willing to bet that no one here is familiar with the Guard product, usually only large ISPs bother with this thing. If you are familiar with the Guard product then I'll let you know we are using the whole product in house... as I said nifty Now one of the things I'm going to have to do is show that my company has spent its money wisely, and that I don't cause harm to our application by blocking legit traffic. To that end I need to test this product. I have a test tool from Cisco for this... but that just isn't enough and quite frankly the DoS it can create are not of the style we have been seeing here. We have seen ICMP fragements, SYN floods, UDP fragments, and just plain overloading port 80 with legit TCP packets. Their tool does a lot of that, but not all of that... plus I would like to get exotic in my testing at some point to show the "powers that be" that the capital expenditure here was well worth it and that we will be in good shape for the future.
I need to hammer this thing, the harder the better. I, however, am not familiar with the tools out there to do such a thing. I usually do pen test work, forensics work, etc and not DDoS/DoS work, so I'm turning to the AO community for suggestions and ideas.
As always if you don't wish to share information in the open then hit me up by email. Any help would be greatly appreciated.
Give a man a match and he will be warm for a while, light him on fire and he will be warm for the rest of his life.
Similar Threads
-
By Blunted One in forum Microsoft Security Discussions
Replies: 10
Last Post: May 3rd, 2006, 06:50 AM
-
By gore in forum Operating Systems
Replies: 3
Last Post: March 7th, 2004, 08:02 AM
-
By Soda_Popinsky in forum Web Security
Replies: 5
Last Post: February 15th, 2004, 03:19 AM
-
By imported_Tek Weasel in forum Network Security Discussions
Replies: 2
Last Post: September 23rd, 2002, 08:44 PM
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
Reply With Quote