1

쉽게 접근하자 DoS!

Sookmyung Women’s Univ. 최서윤

2

Contents

The DoS?!

Sockstress

DoS using LOIC

Link Local DoS

3

The DoS?!

4

The DoS?!

Attacked Scientology Websites

Attacked the RIAA

Hacked the HB Gary Company

5

Attacked the websites

Originally performed DoS at-tack

Using twitter th3j35t3r

The DoS?!

6

Denial of Service attack

Distributed Denial of Service attack

The DoS?!

- Destruction system

- Bandwidth consumption

- Exhausts Server Resources

7

Sockstress

8

3-way hand shaking

Client

SYN/ACK

SYN

ACK

Server

DATA

ACK

Sockstress

9

Sending small WINDOW size Attack TCP

ACK Window size= 0

Client

SYN/ACK

SYN

ACK win =0Server

Sockstress

10

Sockstress

11

Causes  sessions to hang up, consuming RAM

Can render servers unbootable

Sockstress

12

• Defense

- Short-term Block packets with small window sizes with a firewall

- Long-term   Patch OS to reclaim RAM

Sockstress

13

DoS using LOIC

14

DoS using LOIC

LOIC(Low Orbit Ion Cannon)

Bandwidth consumption

Layer 4 DoS

15

DEMO

16

DoS using LOIC

17

DoS using LOIC

18

DoS using LOIC

19

Link Local DoS

20

IPv4 : DHCP -  Dynamic Host Configuration Protocol - Router provides one

NEED AN IP

USE THIS IP

Link Local DoS

21

IPv6 : Router Advertisement -  Every client on the LAN creates an address and joins the network

I AM Router! Join!

OKAY

Link Local DoS

22

DEMO

23

• flood_ router6

Using BackTrack5

Also effects FreeBSD

Windows dies within 30 seconds

No effect on Mac OS X & Ubuntu Linux

RA Flood

24

• Windows Vulnerability

One attacker kills all the Windows machines on a LAN

Win 8 & Server 2012 dies (BSoD)

RA Flood

25

• Effects of New RA Flood

Microsoft Surface RT dies

Win 7 & Server 2008 Freeze during attack

Win 8 & Server 2012 dies (BSoD)

iPad 3 & Android phone slows and crashes (sometimes) Mac OS X dies

RA Flood

26

• Defense

Disable IPv6

Turn off Router Discovery Get a switch with RA Guard Microsoft provides some protection

RA Flood

27

Resource

http://code.google.com/p/r-u-dead-yet/

Keep-Alive DoS Script http://www.esrun.co.uk/blog/keep-alive-dos-script/ Router Advertisement DoS in Windows http://samsclass.info/ipv6/proj/flood-router6a.htm

RA Guard Evasion http://samsclass.info/ipv6/proj/RA-evasion.html

Jester pichttp://mashable.com/2010/11/29/hacker-wikileaks/

LOIChttp://en.wikipedia.org/wiki/Low_Orbit_Ion_Cannon

28

Resource

News http://dailysecu.com/news_view.php?article_id=1663

Generation about DoS attackhttp://privacy-pc.com/articles/generations-of-dos-attacks-some-history-and-links-to-jester-anonymous-and-lulzsec.html

Layer 4 DoShttp://unknownhad.wordpress.com/2013/03/16/what-is-ddos-layer-7-and-layer-4-and-low-rate-ddos/

Layer 7 DoShttps://www.owasp.org/images/4/43/Layer_7_DDOS.pdf

About LOIChttp://gizmodo.com/5709630/what-is-loic

29

Resource

Layer 7 DoShttps://devcentral.f5.com/articles/layer-4-vs-layer-7-dos-attack

About Sockstress and New RA floodDEFCON-21-Bowne-Prince-Evil-DoS-Attacks-and-Strong-Defenses

YoutubeSam Bowne video

30

Thank you ★

31

★

melody2804@gmail.comhttps://www.facebook.com/seoyun.choi.395