Linderhof v2.0.0
Abstract
This paper describes a dual-application tool for studying volumetric attacks and also evaluation and benchmarking volumetric distributed denial of It service attack mitigation systems, specifically amplified reflection attacks. implements amplification attacks abusing several protocols, under customized attack conduction tactics and controlled intensity, providing a user friendly interface.
Keywords:
denial of service, ddos, reflection, amplification
References
Dantas, A. L., de Oliveira Vieira, M., Vasques, A. T., and Gondim, J. J. C. (2020). Linderhof: uma ferramenta para avaliação de sistemas de mitigação de ataques reexivos volumétricos (ddos). In Anais Estendidos do XXXVIII Simpósio Brasileiro de Redes de Computadores e Sistemas Distribuídos, pages 25–32. SBC.
DDoS-GUARD (2019). Hidden threat of pulse wave ddos attacks. [link].
Fuller, V., Li, T., Yu, J. J. Y., and Varadhan, K. (1993). Classless inter-domain routing (cidr): an address assignment and aggregation strategy. RFC 1519, RFC Editor.
Gondim, J. J. and de Oliveira Albuquerque, R. (2019). Mirror saturation in amplied reection ddos. In Actas de las V Jornadas Nacionales de Ciberseguridad: junio 5-7, 2019. Cáceres, pages 185–190. Servicio de Publicaciones.
Gondim, J. J. C., de Oliveira Albuquerque, R., Clayton Alves Nascimento, A., García Villalba, L., and Kim, T. H. (2016). A methodological approach for assessing amplied reection distributed denial of service on the internet of things. Sensors, 16(11):1855.
Gondim, J. J. C., de Oliveira Albuquerque, R., and Sandoval, O. A. L. (2020). Mirror saturation in amplied reection distributed denial of service: A case of study using snmp, ssdp, ntp and dns protocols. DOI: 10.1016/j.future.2020.01.024. Future Generation Computer Systems.
GTK Team (2021). Gtk. https://www.gtk.org.
NETSCOUT (2020). Defending against carpet bombing attacks. https://www.netscout.com/use-case/carpet-bombing-attacks.
The Glade project (2021). Glade. https://glade.gnome.org.
Vasques, A. T. (2020). Análise de saturação de dispositivos iot atuando como refletores em ataques distribuído de negação de serviço por reflexão amplificada. https://repositorio.unb.br/handle/10482/40089 . Dissertação (mestrado) - Universidade de Brasília, Faculdade de Tecnologia.
Vasques, A. T. and Gondim, J. J. C. (2019). Amplied reection ddos attacks over iot mirrors: A saturation analysis. In 2019 Workshop on Communication Networks and Power Systems (WCNPS), pages 1–6.
Vasques, A. T. and Gondim, J. J. C. (2020). Amplied reection ddos attacks over iot reector running coap. In 2020 15th Iberian Conference on Information Systems and Technologies (CISTI), pages 1–6.
DDoS-GUARD (2019). Hidden threat of pulse wave ddos attacks. [link].
Fuller, V., Li, T., Yu, J. J. Y., and Varadhan, K. (1993). Classless inter-domain routing (cidr): an address assignment and aggregation strategy. RFC 1519, RFC Editor.
Gondim, J. J. and de Oliveira Albuquerque, R. (2019). Mirror saturation in amplied reection ddos. In Actas de las V Jornadas Nacionales de Ciberseguridad: junio 5-7, 2019. Cáceres, pages 185–190. Servicio de Publicaciones.
Gondim, J. J. C., de Oliveira Albuquerque, R., Clayton Alves Nascimento, A., García Villalba, L., and Kim, T. H. (2016). A methodological approach for assessing amplied reection distributed denial of service on the internet of things. Sensors, 16(11):1855.
Gondim, J. J. C., de Oliveira Albuquerque, R., and Sandoval, O. A. L. (2020). Mirror saturation in amplied reection distributed denial of service: A case of study using snmp, ssdp, ntp and dns protocols. DOI: 10.1016/j.future.2020.01.024. Future Generation Computer Systems.
GTK Team (2021). Gtk. https://www.gtk.org.
NETSCOUT (2020). Defending against carpet bombing attacks. https://www.netscout.com/use-case/carpet-bombing-attacks.
The Glade project (2021). Glade. https://glade.gnome.org.
Vasques, A. T. (2020). Análise de saturação de dispositivos iot atuando como refletores em ataques distribuído de negação de serviço por reflexão amplificada. https://repositorio.unb.br/handle/10482/40089 . Dissertação (mestrado) - Universidade de Brasília, Faculdade de Tecnologia.
Vasques, A. T. and Gondim, J. J. C. (2019). Amplied reection ddos attacks over iot mirrors: A saturation analysis. In 2019 Workshop on Communication Networks and Power Systems (WCNPS), pages 1–6.
Vasques, A. T. and Gondim, J. J. C. (2020). Amplied reection ddos attacks over iot reector running coap. In 2020 15th Iberian Conference on Information Systems and Technologies (CISTI), pages 1–6.
Published
2021-10-04
How to Cite
VIEIRA, Matheus de O.; DANTAS, Amanda L.; VASQUES, Alan T.; GONDIM, João J. C..
Linderhof v2.0.0. In: TOOLS - BRAZILIAN SYMPOSIUM ON CYBERSECURITY (SBSEG), 21. , 2021, Evento Online.
Anais [...].
Porto Alegre: Sociedade Brasileira de Computação,
2021
.
p. 9-17.
DOI: https://doi.org/10.5753/sbseg_estendido.2021.17334.
