Upgrade to Pro — share decks privately, control downloads, hide ads and more …

DDoS Attack - Gurzu Nepal

Gurzu
May 04, 2023
Technology
0
57

DDoS Attack - Gurzu Nepal

Distributed Denial of Service, or DDoS is a cyber attack that makes a network, server, or a website unavailable by flooding it with traffic from multiple sources at the same time. In a DDoS attack, a large number of compromised devices or bots are used to flood the target system with traffic, disrupting its ability to function properly. This attack can result in serious consequences such as lost revenue, damaged reputation, and compromised security.

In the second chapter of Knowledge Ketchup at Gurzu, Engineer Aadit Shrestha talked briefly about DDoS attack.

Gurzu

May 04, 2023
Tweet

More Decks by Gurzu

See All by Gurzu
Infisical | Ujan | Gurzu
gurzu
0
21
Stop Repeating Yourself | Gurzu | Niroj
gurzu
0
26
Building Apps for Wearable and IoT devices using BLE | Prachanda | Gurzu
gurzu
0
35
Exploring the World of Extended Reality | Asmit | Gurzu
gurzu
0
36
gRPC vs REST | Rasna | Gurzu
gurzu
0
68
Best Practices in Frontend Development | Gurzu
gurzu
0
38
Discovering Ikigai | George | Gurzu
gurzu
0
92
Imposter syndrome | Judas | Gurzu
gurzu
0
110
10 Dysfunctions of Product Management | Sakshi | Gurzu
gurzu
1
180

Other Decks in Technology

See All in Technology
転生CISOサバイバル・ガイド / CISO Career Transition Survival Guide
kanny
3
1k
OpenID Connect for Identity Assurance の概要と翻訳版のご紹介 / 20250219-BizDay17-OIDC4IDA-Intro
oidfj
0
280
『衛星データ利用の方々にとって近いようで触れる機会のなさそうな小話 ~ 衛星搭載ソフトウェアと衛星運用ソフトウェア (実物) を動かしながらわいわいする編 ~』 @日本衛星データコミニティ勉強会
meltingrabbit
0
150
Nekko Cloud、 これまでとこれから ~学生サークルが作る、 小さなクラウド
logica0419
2
980
室長と気ままに学ぶマイクロソフトのビジネスアプリケーションとビジネスプロセス
ryoheig0405
0
370
RSNA2024振り返り
nanachi
0
590
Classmethod AI Talks(CATs) #16 司会進行スライド(2025.02.12) / classmethod-ai-talks-aka-cats_moderator-slides_vol16_2025-02-12
shinyaa31
0
110
2.5Dモデルのすべて
yu4u
2
880
組織貢献をするフリーランスエンジニアという生き方
n_takehata
2
1.3k
Raycast AI APIを使ってちょっと便利な拡張機能を作ってみた / created-a-handy-extension-using-the-raycast-ai-api
kawamataryo
0
110
Helm , Kustomize に代わる !? 次世代 k8s パッケージマネージャー Glasskube 入門 / glasskube-entry
parupappa2929
0
250
The Future of SEO: The Impact of AI on Search
badams
0
200

Featured

See All Featured
Intergalactic Javascript Robots from Outer Space
tanoku
270
27k
10 Git Anti Patterns You Should be Aware of
lemiorhan
PRO
656
59k
What’s in a name? Adding method to the madness
productmarketing
PRO
22
3.3k
Designing Dashboards & Data Visualisations in Web Apps
destraynor
231
53k
StorybookのUI Testing Handbookを読んだ
zakiyama
28
5.5k
Bash Introduction
62gerente
611
210k
Understanding Cognitive Biases in Performance Measurement
bluesmoon
27
1.6k
GitHub's CSS Performance
jonrohan
1030
460k
Designing Experiences People Love
moore
140
23k
Adopting Sorbet at Scale
ufuk
74
9.2k
Become a Pro
speakerdeck
PRO
26
5.1k
Visualization
eitanlees
146
15k

Transcript

  1. None
  2. None
  3. None
  4. None
  5. None
  6. None
  7. None
  8. None
  9. None

  10. 3 TYPES 1. Application-Layer Attacks 2. Protocol Attacks 3. Volumetric

    Attacks

  11. APPLICATION-LAYER ATTACKS • Targets and disrupts a specific app, not

    an entire network. • A hacker generates a high number of HTTP requests that exhaust the target server's ability to respond. • Challenging to prevent as it is difficult to distinguish between legitimate and malicious HTTP requests.

  12. PROTOCOL ATTACKS • Also known as network-layer attacks. • Exploit

    weaknesses in the protocols or procedures that govern internet communications. • Use spoofing to create an infinite loop of requests until the system crashes.

  13. VOLUMETRIC ATTACKS • Consumes a target's available bandwidth with false

    data requests and creates network congestion. • Most common type of this attack is the DNS amplification attack. • All volumetric attacks rely on botnets. • Volumetric attacks are the most common type of DDoS.

  14. USUAL DDOS SYMPTOMS • Large amounts of traffic coming from

    clients with same or similar characteristics. E.g. device type, browser type/version, IP or IP range, and location etc. • An exponential, unexpected rise in traffic at a single endpoint/server. • A server starts repeatedly crashing for no reason. • Your website is taking too long to respond to requests.

  15. RESPONDING TO A DDOS ATTACK •Blackhole filtering:Go through incoming traffic

    and determine a limitation criterion. Use the criterion to route malicious traffic into a blackhole, essentially dropping it. •Casting:Distribute the traffic across multiple servers, increasing your capacity, and decreasing the chances of individual servers getting overwhelmed. •IP Blocking: If you are noticing unexpectedly high traffic from the same range of IP addresses, block them.

  16. PREVENTING DDOS ATTACKS •Real-time packet analysis: Analyze packets based on

    different rules, as they enter your system, discarding the potentially malicious ones. •DDoS defense system (DDS): A DDS can detect legitimate-looking content with malicious intent. It protects against both protocol and volumetric attacks, without requiring any human intervention. •Web application firewall:Web application firewalls (WAF) are a great tool to mitigate application layer DDoS attacks. They give you a way to filter incoming requests, based on different rules, which can also be added on-the-fly, in response to an attack. •Rate limiting:Limit the number of requests a server can entertain over a certain time period.

  17. Thank you