What is "DDoS"?
Denial of Service attacks(or Distributed Denial of Service attacks[DDoS]) is a form of organized attacks with the goal of taking down a server by overloading it. Often with useless information(packets) being sent to the server in massive amounts.
Keep in mind that performing DDoS attacks is indeed a federal crime in the US.
It is also an international offence and will be punished according to the local laws of the individual's country.
But enough talk. I will now show you a quick example of a DoS attack of sorts you can do on your local computer.
Sample
Keep in mind that this is NOT a real DoS attack, but rather an example to visualize how a DoS works.
We will take down YOUR computer.
Step 1
Open up notepad, mousepad, or your favored equivalent.
Step 2
Type in this simple batch command
Denial of Service attacks(or Distributed Denial of Service attacks[DDoS]) is a form of organized attacks with the goal of taking down a server by overloading it. Often with useless information(packets) being sent to the server in massive amounts.
Keep in mind that performing DDoS attacks is indeed a federal crime in the US.
It is also an international offence and will be punished according to the local laws of the individual's country.
But enough talk. I will now show you a quick example of a DoS attack of sorts you can do on your local computer.
Sample
Keep in mind that this is NOT a real DoS attack, but rather an example to visualize how a DoS works.
We will take down YOUR computer.
Step 1
Open up notepad, mousepad, or your favored equivalent.
Step 2
Type in this simple batch command
Code:
:a
start
goto aStep 3
Save as "dossample.bat" making sure you select "All files" from the "File Type" dialog.
Step 4
Run that sucker, but save your work first, as this will crash even the best computers in a matter of minutes, even seconds.
What did you learn from this?
Observe how the file rapidly replicates itself, opening a new CMD right after it opens another.
An infinite loop has been created that has filled the RAM with useless and massive amounts of CMDs(or Terminals for you Unix folk)
DDoS attacks work much the same way, except instead of replicating an infinite number of CMDs, they send information(packets) to the server over and over and over again until the server crashes.
What information you may ask?
Anything. Your login name, your 'online' status, a new comment, the number of views on a video, your new high score. Absolutely any information that could be resent a massive amount of times to the same server.
Next we will be discussing the simplest form of DDoS.
DDoS by Ping Flood
Please note that I will be pinging my Localhost. You should too.
Perhaps one of the simplest ways to DoS is by using the 'ping' command built into most operating systems, including all windows distributions, and Linux.
Step 1
Start up your server. Mine is apache, but that is beside the point, the server type does not matter. If it has an IP address, it can be pinged.
Step 2
Type in the ping command
Code:
ping -t -a -l 65500 localhostStep 3
Press enter and watch it ping the localhost over and over until
your server crashes, or you get tired of waiting for it to crash.
Since most modern servers can take the stress of the ping flood, you will need to get all your friends to help you ping to bring your server down. Or even slow it down.
Command Explained
ping - tells the computer to ping a server
-t - It will continue to ping the server until the command is closed, or stopped.
-a - Resolves the adress to host names.
-l - Size.
By default the ping will send 32bytes of data to the server, so you must change this to a bigger number. The maximum is 65,500bytes, so that is what we used.
If you send a server any number higher than 65,500bytes it will instantly crash. This is called "Ping of Death".
Like any other thing with the suffix "of Death" it is very dangerous, rare, and hard to accomplish indeed.
DDoS by Reloading
Something as simple as reloading a page can take down a server if done enough times.
Step 1
Make a page that lets you submit forms. Method='GET' is better than method='POST' for this, but both will work.
(If you do not understand step 1, just find a page that lets you sumbit information, like a new comment or upload a picture)
Step 2
Fill out the forms and submit
Step 3
Reload the page
If the page uses the POST method your browser will display a dialog asking if you are sure you want to resend the information, or something to that effect. Simply click "Continue" or "OK".(see now why GET is better?)
Step 4
Keep reloading until server is down.
Their are many addons and tools that allow you to autoreload a page. It is a matter of googleing for them. They are widely available and free.
I have just created a program that allows you to Auto-refresh a page using IE. If you are interested please download from:
Host: Darksunlight | Size: 9kb | Format: .zip ultra compressed | Platform: Windows
This method is very primitive as you can see, but it is probably the best way to DDoS.
