DDoS Guideline

What is DDoS?

A Distributed Denial of Service (DDoS) attack is an attempt to make an online service unavailable by overwhelming it with numerous traffic from multiple sources.

What are DDoS Attack Types?

Volume Based Attacks

Includes UDP floods, ICMP floods, and other spoofed-packet floods. The attacker's goal is to saturate the bandwidth of the attacked site/service, and magnitude is measured in bits per second (Bps).

Protocol Attacks

Includes SYN floods, fragmented packet attacks, Ping of Death, Smurf DDoS and more. This type of attack consumes actual server resources, or those of intermediate communication devices, such as firewalls and load balancers, and is measured in packets per second (Pps).

Application Layer Attacks

Includes low-and-slow attacks, GET/POST floods, attacks that target Apache, Windows or OpenBSD vulnerabilities and even more. Comprised of seemingly legitimate and innocent requests, the goal of these attacks is to crash the web server down, and the magnitude is measured in Requests per second (Rps).

What is the motivation behind this attacks?

Attackers are primarily motivated by;
• ideologies, 
• business feuds, 
• boredom, 
• extortions
• cyber warfare
• etc.

Why To Perform DDoS Tests?

Generally, DDoS tests are performed to measure the efficiency and limits of the DDoS prevention products and services, and to improve these systems, as well as to measure and improve the efficiency and capabilities of the organization in case of a DDoS attack.

DDoS prevention systems and products are not plug-and-play systems. Organization’s normal and abnormal network traffics, baselines and thresholds must be defined. However, it is important that the devices and server systems in the organization’s network must be tested and the security specialists who manage DDoS prevention systems must experience the reaction of the systems before a real DDoS attack happen.

How To Perform DDoS Tests Easily?

Most DDoS tests are manually performed nowadays. The technical and administrative preparation stages of these tests take long time. Security and IT teams must work together to prepare and configure the systems to perform DDoS tests. 

Performance of these operations leads to additional load in terms of time and cost. Real-time monitoring is usually not available during the tests and it takes time to issue reports after the tests are completed. Regardless of whether they are performed for once or regularly, the preparation of each test is started from the beginning.

With LODDOS, you can get rid of all these costly and time-consuming processes. You can test your DDoS cyber resilience easily and safely.