Slowloris is basically an HTTP Denial of Service attack that affects threaded servers. It works like this:
* We start making lots of HTTP requests.
* We send headers periodically (every ~15 seconds) to keep the connections open.
* We never close the connection unless the server does so. If the server closes a connection, we create a new one keep doing the same thing.
This exhausts the servers thread pool and the server can't reply to other people.
SOCKS5 proxy support on SlowLoris
However, if you plan on using the -x option in order to use a SOCKS5 proxy for connecting instead of a direct connection over your IP address, you will need to install the PySocks library (or any other implementation of the socks library) as well. PySocks is a fork from SocksiPy by GitHub user @Anorov and can easily be installed by adding PySocks to the pip command above or running it again like so: sudo pip3 install PySocks
You can then use the -x option to activate SOCKS5 support and the --proxy-host and --proxy-port option to specify the SOCKS5 proxy host and its port, if they are different from the standard 127.0.0.1:8080.
Install and run SlowLoris
sudo pip3 install slowloris
slowloris [target's address]
or
git clone https://github.com/gkbrk/slowloris
cd slowloris
python3 slowloris.py [target's address]
Configuration options: It is possible to modify the behaviour of slowloris with command-line arguments.
License of SlowLoris: The code is licensed under the MIT License.
No hay comentarios:
Publicar un comentario