SlowHTTPTest 1.5

A tool to test for slow HTTP DoS vulnerabilities

  Add it to your Download Basket!

 Add it to your Watch List!

0/5

Rate it!

What's new in SlowHTTPTest 1.5:

  • This build includes performance improvements and ability to direct either entire or probe traffic through a web proxy.
Read full changelog
report
malware
send us
an update
LICENSE TYPE:
Apache 
FILE SIZE:
104 KB
USER RATING:
5.0/5 6
DEVELOPED BY:
Sergey Shekyan
CATEGORY:
Home \ Security
1 SlowHTTPTest Screenshot:
SlowHTTPTest
SlowHTTPTest is a free, open-source and highly configurable application that mimics some Application Layer Denial of Service attacks.

In other words, SlowHTTPTest implements the most common low-bandwidth Application Layer DoS attacks, like slowloris, Slow HTTP POST, Slow Read attack (based on TCP persist timer exploit) by draining concurrent connections pool, as well as Apache Range Header attack by causing very significant memory and CPU usage on the server.

The Slowloris and Slow HTTP POST DoS attacks rely on the fact that the HTTP protocol, by default, needs requests to be completely received by the server before being processed.

If an HTTP request is not complete, or if the transfer rate is very low, the server keeps its resources busy waiting for the rest of the data. If the server keeps too many resources busy, this creates a denial of service.

SlowHTTPTest is sending partial HTTP requests, trying to get denial of service from target HTTP server.

SlowHTTPTest is cross-platform and it works on Mac OS X, Windows and Linux.

Detailed instructions on how to install and use the SlowHTTPTest utility on your Mac are available HERE.

Last updated on September 8th, 2012

Runs on: Mac OS X (-)

#HTTP DoS vulnerabilities #attack simulator #Application Layer DoS #HTTP #DoS #vulnerability #attack

Add your review!

SUBMIT