DDoS Attack and Mitigation
Upreti, Naran (2019)
Upreti, Naran
2019
Julkaisun pysyvä osoite on
https://urn.fi/URN:NBN:fi:amk-201905098853
https://urn.fi/URN:NBN:fi:amk-201905098853
Tiivistelmä
Distributed denial of service (DDoS) attack is a massive threat to the internet which has existed for decades now. Although various detection and defence mechanism have been developed in recent years, the volume of attacks is still rising on the internet. The DDoS attacks affect the service provided by the large companies and organizations on the internet targeting the financial and political entities.
The purpose of this project was to understand the realm of the DDoS attacks. The main objective of this project was to study the three types of DDoS attacks which were found to be the most popular and effective DDoS attack in recent years.
SYN flood attack, DNS amplification attack and NTP amplification attack are the leading types which are immense in size of the volume of traffic generated and account for more than two-thirds of the DDoS attack incidents. In this project, a TCP-SYN flood attack using Hping3 is done in a secure environment to capture and analyze the packets for the testing purpose.
The result of the SYN attack using Hping3 tools shows strong evidence that the DDoS attack can target the victim's server with a huge volume of traffic. It was concluded that the immense volume of traffic generated from the attack uses all the resources of the victim's server, and the flow of data between the service provider and the legitimate user is disrupted.
The purpose of this project was to understand the realm of the DDoS attacks. The main objective of this project was to study the three types of DDoS attacks which were found to be the most popular and effective DDoS attack in recent years.
SYN flood attack, DNS amplification attack and NTP amplification attack are the leading types which are immense in size of the volume of traffic generated and account for more than two-thirds of the DDoS attack incidents. In this project, a TCP-SYN flood attack using Hping3 is done in a secure environment to capture and analyze the packets for the testing purpose.
The result of the SYN attack using Hping3 tools shows strong evidence that the DDoS attack can target the victim's server with a huge volume of traffic. It was concluded that the immense volume of traffic generated from the attack uses all the resources of the victim's server, and the flow of data between the service provider and the legitimate user is disrupted.