API tools faq
paste
TVT618

[Linux] SlowHTTPTest - App Layer DoS attack simulator (Raw)

TVT618
Jan 30th, 2018
77
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.58 KB | None | 0 0
raw download clone embed print report
  1. [Linux]
  2. SlowHTTPTest - Application Layer DoS attack simulator
  3.  
  4. Disclaimer
  5. Any actions and or activities related to the code provided is solely your responsibility.The misuse of the information in this website can result in criminal charges brought against the persons in question. The authors will not be held responsible in the event any criminal charges be brought against any individuals misusing the information in this tool to break the law.
  6.  
  7. SlowHTTPTest
  8. SlowHTTPTest is a highly configurable tool that simulates some Application Layer Denial of Service attacks by prolonging HTTP connections in different ways.
  9.  
  10. Use it to test your web server for DoS vulnerabilites, or just to figure out how many concurrent connections it can handle. SlowHTTPTest works on majority of Linux platforms, OS X and Cygwin - a Unix-like environment and command-line interface for Microsoft Windows, and comes with a Dockerfile to make things even easier.
  11.  
  12. Check out Wiki for installation and usage details.
  13.  
  14. Installation
  15. The tool is distributed as portable package, so just download the latest tarball from Releases section, extract, configure, compile, and install:
  16. git clone https://github.com/shekyan/slowhttptest/
  17. cd slowhttptest
  18. ./configure --prefix=PREFIX
  19. make
  20. sudo make install
  21.  
  22. Where PREFIX must be replaced with the absolute path where slowhttptest tool should be installed.
  23.  
  24. You need libssl-dev to be installed to successfully compile the tool. Most systems would have it. On OS X, run brew install openssl && brew link openssl --force, if g++ fails to locate ssl.h, run xcode-select --install.
  25.  
  26. Running slowhttptest in Docker
  27. The included Dockerfile allows you to build slowhttptest in a containerized Docker environment to avoid polluting your system with development dependencies. You can also use the Docker container for deploying slowhttptest to Kubernetes (Job), Mesos/DCOS (Task), Docker Swarm, etc... if that suites your needs.
  28.  
  29. Build the docker container: docker build -t slowhttptest:latest .
  30. Run the docker container: docker run slowhttptest:latest <slowhttptest args>
  31. If you make changes to the source, just re-run the steps and the changes will generate a new container with the updated binary inside the container.
  32.  
  33. If you don't want to run "docker run" over and over... you can get an interactive shell: docker run -ti --entrypoint sh slowhttptest:latest then run slowhttptest (it's in the path).
  34.  
  35. Alternatively.
  36. SlowHTTPTest Wiki
  37.  
  38. How to Protect Against Slow HTTP Attacks?
  39.  
  40. Download SlowHTTPTest
  41. See more at SlowHTTPTest Wiki
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!