The zombie scapper is an automated perl tool for detecting and stopping distributed denial of service programs. The tool automatically searches and scans the desired target for programs by looking for the ports that are used by the zombie masters. It stops the zombie masters by sending a kill/stop trigger.
cc93207baf3dcbcf2b16c9293accbba7The scrutinizer toolkit is designed to protect Web servers from HTTP (D)DoS attacks. It is a toolkit consisting of an analysis engine which analyzes Web server access logfiles in almost real time, an Apache module which is able to block wrongdoers on the Web server, an extension to block offenders with netfilter firewalls, and a set of visualization tools. The analysis engine uses statistical anomaly detection to expose offenders. The engine has to be trained with old log files so that it can adapt itself to your system.
fec85dffee76c0c834baef6f0198296aThe scrutinizer toolkit is designed to protect Web servers from HTTP (D)DoS attacks. It is a toolkit consisting of an analysis engine which analyzes Web server access logfiles in almost real time, an Apache module which is able to block wrongdoers on the Web server, an extension to block offenders with netfilter firewalls, and a set of visualization tools. The analysis engine uses statistical anomaly detection to expose offenders. The engine has to be trained with old log files so that it can adapt itself to your system.
d657105db587ae9a595b953ea44cad2cWebdevil is a tool used to create a distributed performance test against webservers by keeping connections alive until the server times them out. Slave daemon is included to assist in stress testing.
56e37bef1c7c45d2b7a6d99f143f0ccfThis is a proof-of-concept tool to demonstrate possible distributed attacking concepts, such as sending packets from one workstation and sniffing the reply packets on another.
007b9032c081f6fef832762eec96be5eSmall ICMP based backdoor and DDoS slave + master. In German and English.
3cae6d2651972b788eb60a662a67ea5dPud is a peer-to-peer ddos client/server which does not rely on hubs or leafs to function properly. It can connect as many nodes together as you like, and if one node dies, the rest will always stay up).
4d79894c14735a1408d6ad18c1aa66b6DOSnet.c is a ddos script which runs from root and connects to an IRC network to take commands via ctcp.
ccb171ef33fc0b55ab93d94d2c24b1bbOrgasm v1.0 is a distributed reflection denial of service attack. More information available here.
1c5a3f2ae8e4f73560831bd942abe4f0Drdos v2.0 is a tool for distributed reflection denial of service attacks.
51c01a8a1fede2b84f8a0bba1138d892Find_ddos v4.2 (linux) - The NIPC has developed a tool to assist in combating ddos agents. The tool scans a local system that is either known or suspected to contain a DDOS program. The tool will detect several known denial-of-service attack tools including tfn2k client, tfn2k daemon, trinoo daemon, trinoo master, tfn daemon, tfn client, stacheldraht master, stacheldraht client, stachelddraht demon and tfn-rush client. Solaris version also available.
5af645362aa80a3fb6c1f1c3fab6e7a3DDoS IRC bots are becoming popular Distributed Denial Of Service attack method. They do not require unix clients to operate and are easy to use. Hypnosis
980ed56098d63fbde886f77e2e9c335cSkydance v3.6 is a distributed denial of service tool for Windows. Uses the IP_HDRINCL option. Tested on Win98 and Win2k. Uses ICMP for communication.
8fe6af0053bfac72292fd1f41687414fKnight.c Knight is a distributed denial of service client that is very light weight and is very powerful. It goes on IRC and joins a channel, then accepts commands via IRC (to prevent from getting caught). It has features like, an automatic updater via http or ftp, a checksum generater, a syn flooder, a tcp flooder, a udp flooder, slice2, spoofing to subnets, and more. This program has been used to create DDoS nets of over 1000 clients.
30aded215fadd9c85bfcb92da55f8fd4ddos.sh is a tool which causes NT servers which are vulnerable to the unicode bug to pingflood a target host.
e88ac6289dc096b5d4948a2a79daa708Distributed DNS Flooder v0.1b - A powerful attack against DNS servers.
3672dfbec5c48d4a4a8aef930a29c8faStick is a distributed denial of service attack which targets IDS systems. It takes a snort rule file as input. Binary distribution.
453b280e24ece40bd1f9837bd2d12f9bThe Stick DDOS tool is a resource starvation attack against IDS systems. Many IDS systems are affected.
2c5d68195d4c598cc87cc2fad2b59d88Ramenfind v0.4 is a local Ramen worm detection and removal tool. Final release unless problems are found.
47ec41edc981a66df35e1dcaec2fa47cRamenfind v0.3 is a local Ramen worm detection and removal tool. Final release unless problems are found.
6e86aeec1678f9955176db9aa9d73f7dStacheldraht v1.666 + antigl + yps distributed denial of service tool.
7181039d0767fd4cf4cb3a77bea3c47fRamen worm local detection tool. Still in beta.
15d0fba3d19e400be70b9924aadb4b21Ramen-Clean is a perl script which checks to see if your system is infected with the Ramen Linux Worm, and cleans it.
8135ad0d8a6731b216f3a5a69bca3040Flitz is a DDOS tool which features spoofed ip/tcp/udp flood, flooding in parallel, distributed smurf attack and status report of the slave. With one stop command, you can stop all the slaves at once.
4fc98181098322eecfb91ab4b2860d61DDoSPing v2.0 is a Win 9x/NT GUI scanner for the DDoS agents Wintrinoo, Trinoo, Stacheldraht and TFN.
92dbe2bfc9673ec480aea091b042093b
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed