Metasploitable/TorsHammer: Difference between revisions
From charlesreid1
(Redirected page to Tors Hammer) |
|||
| (5 intermediate revisions by the same user not shown) | |||
| Line 1: | Line 1: | ||
#REDIRECT [[Tors Hammer]] | |||
<!-- | |||
=Tor's Hammer Slow Body DoS Attack= | =Tor's Hammer Slow Body DoS Attack= | ||
| Line 6: | Line 10: | ||
We'll test this tool out on the [[Metasploitable]] machine, which is running Apache 2.2.8, and see if it is vulnerable to the Tor's Hammer DoS attack. If so, we'll mount the attack. | We'll test this tool out on the [[Metasploitable]] machine, which is running Apache 2.2.8, and see if it is vulnerable to the Tor's Hammer DoS attack. If so, we'll mount the attack. | ||
<font size="+3">NOTE: This will completely knock out the target server.</font> The web server will run out of memory and will begin to drop packets from the device. It must be rebooted to fix. Use wisely. | |||
==Python Script== | ==Python Script== | ||
| Line 143: | Line 149: | ||
Turns out, the machine ran out of memory, and the network device began dropping packets: | Turns out, the machine ran out of memory, and the network device began dropping packets: | ||
This attack '''completely''' knocked the server offline. | This attack '''completely''' knocked the server offline, and it had to be rebooted. | ||
[[Image:TorsHammer_OfflineMemSqueeze.png|500px]] | [[Image:TorsHammer_OfflineMemSqueeze.png|500px]] | ||
=pwn= | |||
To be sure: this attack can pwn a server. | |||
=Flags= | =Flags= | ||
==DoS== | |||
{{DoSFlag}} | |||
==Metasploitable== | |||
{{MSFlag}} | {{MSFlag}} | ||
--> | |||
Latest revision as of 04:40, 29 August 2016
Redirect to: