Shulou(Shulou.com)05/31 Report--

This article is to share with you what are the DDoS attack methods, Xiaobian thinks it is quite practical, so share it with you to learn, I hope you can gain something after reading this article, not much to say, follow Xiaobian to have a look.

What are the types of DDoS attacks?

With the rapid development of the Internet, there are many enterprises began to build websites to communicate with overseas users or other domestic users, some websites have payment functions, some websites provide video is charged, etc. In recent years, there are many hackers who attack these websites to gain profits.

SYN/ACK Flood attacks: This attack method is the classic and most effective DDoS method, which can kill network services of various systems, mainly by sending a large number of SYN or ACK packets of forged source IP and source port to the victim host, resulting in the host's cache resources being exhausted or busy sending response packets, resulting in denial of service. Since the sources are forged, it is difficult to trace them. The disadvantage is that it is difficult to implement and requires high bandwidth zombie host support. A small number of these attacks cause the host server to be unreachable but Ping, a large number of SYN_RECEIVED states are observed on the server with Netstat -na, and a large number of these attacks cause Ping failures, TCP/IP stack failures, and system freezing, i.e., no response to keyboard and mouse. Most common firewalls are unable to defend against such attacks.

TCP full connection attack: This attack is designed to bypass the inspection of conventional firewalls. In general, most conventional firewalls have the ability to filter DOS attacks such as TearDrop and Land, but they miss normal TCP connections.(For example: IIS, Apache and other Web servers) can accept a limited number of TCP connections. Once there are a large number of TCP connections, even normal ones will lead to very slow or even inaccessible website access. TCP full connection attack is to continuously establish a large number of TCP connections with the victim server through many zombie hosts until the server's memory and other resources are exhausted and dragged, resulting in denial of service. The characteristic of this attack is that it can bypass the general firewall protection and achieve the attack purpose. The disadvantage is that it needs to find many zombie hosts, and because the IP of the zombie host is exposed, it is easy to be traced.

The above is what DDoS attack methods are, Xiaobian believes that some knowledge points may be seen or used in our daily work. I hope you can learn more from this article. For more details, please follow the industry information channel.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.