Metasploitable/TorsHammer: Difference between revisions
From charlesreid1
No edit summary |
(Redirected page to Tors Hammer) |
||
| (4 intermediate revisions by the same user not shown) | |||
| Line 1: | Line 1: | ||
#REDIRECT [[Tors Hammer]] | |||
<!-- | |||
=Tor's Hammer Slow Body DoS Attack= | =Tor's Hammer Slow Body DoS Attack= | ||
| Line 7: | Line 11: | ||
We'll test this tool out on the [[Metasploitable]] machine, which is running Apache 2.2.8, and see if it is vulnerable to the Tor's Hammer DoS attack. If so, we'll mount the attack. | We'll test this tool out on the [[Metasploitable]] machine, which is running Apache 2.2.8, and see if it is vulnerable to the Tor's Hammer DoS attack. If so, we'll mount the attack. | ||
<font size="+3">NOTE: This will completely knock out the target server. The web server will run out of memory and will begin to drop packets from the device. It must be rebooted to fix. | <font size="+3">NOTE: This will completely knock out the target server.</font> The web server will run out of memory and will begin to drop packets from the device. It must be rebooted to fix. Use wisely. | ||
==Python Script== | ==Python Script== | ||
| Line 145: | Line 149: | ||
Turns out, the machine ran out of memory, and the network device began dropping packets: | Turns out, the machine ran out of memory, and the network device began dropping packets: | ||
This attack '''completely''' knocked the server offline. | This attack '''completely''' knocked the server offline, and it had to be rebooted. | ||
[[Image:TorsHammer_OfflineMemSqueeze.png|500px]] | [[Image:TorsHammer_OfflineMemSqueeze.png|500px]] | ||
=pwn= | |||
To be sure: this attack can pwn a server. | |||
=Flags= | =Flags= | ||
==DoS== | |||
{{DoSFlag}} | |||
==Metasploitable== | |||
{{MSFlag}} | {{MSFlag}} | ||
--> | |||
Latest revision as of 04:40, 29 August 2016
Redirect to: