public
Last active

A list of references from my talk on App DoS These are in no particular order, and because of the amount of overlap I am not citing individual sources directly.

  • Download Gist
slowdos
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27
DoS / slow DoS:
 
https://www.owasp.org/images/4/43/Layer_7_DDOS.pdf
http://docs.cpanel.net/twiki/bin/view/EasyApache/Apache/SlowlorisAttacks
http://en.nsfocus.com/SecurityReport/2013%20NSFOCUS%20Mid-Year%20DDoS%20Threat%20Report.pdf
http://blog.spiderlabs.com/2011/07/advanced-topic-of-the-week-mitigating-slow-http-dos-attacks.html
http://ckers.org/slowloris/
http://sourceforge.net/projects/pyloris/
http://security.stackexchange.com/questions/19698/mitigating-anonymous-dos-tor-combined-with-pyloris
https://blogs.akamai.com/2013/09/slow-dos-on-the-rise.html
https://community.qualys.com/blogs/securitylabs/2011/09/19/testing-web-servers-for-slow-http-attacks
http://www.funtoo.org/Slowloris_DOS_Mitigation_Guide
http://code.google.com/p/slowhttptest/
http://pastebin.com/zqyzxXRD
http://blog.shekyan.com/
https://securosis.com/blog/defending-against-application-denial-of-service-attacks-introduction
http://httpd.apache.org/docs/trunk/misc/security_tips.html#dos
http://www.prolexic.com/knowledge-center-dos-and-ddos-attack-reports.html
 
Node(.js):
 
https://github.com/nodejitsu/node-http-proxy
http://blog.loadimpact.com/2013/03/19/know-your-node-js/
 
Etc:
 
https://github.com/joyent/node/wiki/Installing-Node.js-via-package-manager

Please sign in to comment on this gist.

Something went wrong with that request. Please try again.