Slowloris is basically an HTTP Denial of Service attack that affects threaded servers.

Last update: Jun 19, 2022

Related tags

Networking slowrise-ddos-tool

Overview

slowrise-ddos-tool

What is Slowloris?

Slowloris is basically an HTTP Denial of Service attack that affects threaded servers. It works like this:

We start making lots of HTTP requests.
We send headers periodically (every ~15 seconds) to keep the connections open.
We never close the connection unless the server does so. If the server closes a connection, we create a new one keep doing the same thing.

This exhausts the servers thread pool and the server can't reply to other people.

How to install and run?

You can clone the git repo or install using pip. Here's how you run it.

sudo pip3 install slowloris
slowloris example.com

That's all it takes to install and run slowloris.py.

If you want to clone using git instead of pip, here's how you do it.

git clone https://github.com/0demoncat0/slowrise-ddos-tool
cd SLOWRISE-DDOS-TOOL
python3 ddos.py example.com

SOCKS5 proxy support

However, if you plan on using the -x option in order to use a SOCKS5 proxy for connecting instead of a direct connection over your IP address, you will need to install the PySocks library (or any other implementation of the socks library) as well. PySocks is a fork from SocksiPy by GitHub user @Anorov and can easily be installed by adding PySocks to the pip command above or running it again like so:

sudo pip3 install PySocks

You can then use the -x option to activate SOCKS5 support and the --proxy-host and --proxy-port option to specify the SOCKS5 proxy host and its port, if they are different from the standard 127.0.0.1:8080.

Configuration options

It is possible to modify the behaviour of slowloris with command-line arguments. In order to get an up-to-date help document, just run slowloris -h.

-p, --port
- Port of webserver, usually 80
-s, --sockets
- Number of sockets to use in the test
-v, --verbose
- Increases logging (output on terminal)
-ua, --randuseragents
- Randomizes user-agents with each request
-x, --useproxy
- Use a SOCKS5 proxy for connecting
--https
- Use HTTPS for the requests
--sleeptime
- Time to sleep between each header sent

License

The code is licensed under the MIT License.

Slowloris is basically an HTTP Denial of Service attack that affects threaded servers.

Related tags

Overview

slowrise-ddos-tool

What is Slowloris?

How to install and run?

SOCKS5 proxy support

Configuration options

License

Owner

DEMON cat

Una simple herramienta para rastrear IP programada en Python

Simple Port Scanner script written in Python, plans is to expand upon this script to turn it into a GUI based pen testing suite

nettrace is a powerful tool to trace network packet and diagnose network problem inside kernel.

BlueHawk is an HTTP/1.1 compliant web server developed in python

A web-based app that allows easy, simple - and if desired high-throughput - analysis of qPCR data

Solismod - A script subscribes to MQTT topics and waits for a message

SonicWall SSL-VPN Exploit

Dshell is a network forensic analysis framework.

Multipurpose Growtopia Server tools, can be used for newbie to learn things.

ip2domain - get ip to domain, Know the domian corresponding to the local network connection IP

Netwalk is a Python library to discover, parse, analyze and change Cisco switched networks

FIRM-AFL is the first high-throughput greybox fuzzer for IoT firmware.

Simple HTTP Server for CircuitPython

Compare the contents of your hosted and proxy repositories for coordinate collisions

订阅转换，添加免流host

Evaluation of TCP BBRv1 in wireless networks

Transfer files to and from a Windows host via ICMP in restricted network environments.

Best discord webhook spammer using proxy (support all proxy type)

This is a top level socket library, making servers and clients EASY!

CSP-style concurrency for Python