LoDDoS (50 bots - 60 mins - up to 3000 Mbps - Operator Support)

LoDDoS is an automated DDoS testing platform which is managed through a web interface. The platform simulates real DDoS attacks against the organizations via real attack parameters
Etiketler :
İş Ortağı :
Barikat Cyber Security
Barikat Cyber Security
Barikat Cyber Security Products
What is LODDoS?

LODDoS is an automated DDoS testing platform which is managed through a web interface. The platform simulates real DDoS attacks against the organizations via real attack parameters.

This enables organizations to test the limits and efficiency of DDoS prevention systems before a real DDoS attack. The tests can be stopped, restarted, recorded, reported anytime and the reports can be stored to evaluate later on. Thus, the benefits of the DDoS prevention investments can be easily monitored.

When you purchase the item you can make your own tests as a service via LODDoS Web GUI.

LODDoS Architecture
LODDoS contains 3 main components. These components are;

Command control center where the attacks performed are defined, managed, monitored and reported,
Bot networks where the attacks are conducted,
Monitoring system where the target system’s health status is monitored..

Command control center is controlled via a web interface. There are different user roles for management, operations and monitoring. DDoS tests performed after 2 phase security authorization based on these user’s rights. Bot network runs on a cloud service provider and all the bots are managed by command control center. The number of bots on the bot network, the geographical location of the bots, the bandwidth generated can be all controlled via command control center based on the scope of the test. The monitoring type to be conducted by the monitoring component can also be controlled by the command control center.


Supported DDoS Test Types
Volumetric DDoS Tests

The main purpose of volumetric DDoS attacks is to consume network and system resources of target systems and to prevent users from serving these systems.

Mostly, it is intended to fill the line by sending packets at the top of the internet bandwidth of the target systems.

Test TypeDescription
TCP SYN FloodHigh volume of SYN packets is sent to a TCP service serving on the target system, preventing the corresponding TCP service from serving
TCP SYN-ACK FloodHigh volume of the SYN-ACK packets is sent to a TCPservice serving on the target system, preventing the TCP service from serving.
TCP ACK-FIN FloodHigh volume of ACK-FIN packets is sent to a TCP service serving on the target system to prevent the corresponding TCP service from serving
TCP RST FloodHigh volume of RST packets is sent to a TCP service serving on the target system to prevent the corresponding TCP service from serving.
TCP PUSH ACK FloodHigh volume of PUSH ACK packets is sent to a TCP service serving on the target system to prevent the corresponding TCP service from serving.
TCP All Flags FloodHigh volume of full-flagged TCP packets is sent to a TCP service serving on the target system to prevent the corresponding TCP service from serving.
TCP No Flags FloodHigh volume of none-flagged TCP packets is sent to a TCP service serving on the target system to prevent the corresponding TCP service from serving.
UDP FloodHigh volume of UDP packets is sent to a UDP service serving on the target system to prevent the UDP service from serving.
UDP Fragmented Flood High volume of fragmented UDP packets is sent to a UDP service serving on the target system and the UDP service is prevented fromserving.
ICMP FloodHigh volume of ICMP packets is sent to the target systems for testing
DDoS Tests in Application Layer

The aim of the DDOS tests performed on the application layer is to open valid and real connections on the target systems and to force the limits of the systems and prevent them from serving.

TEST TYPEDESCRİPTİON
HTTP GETHigh amount of GET requests are sent to a HTTP service serving on the target system to prevent the service from serving.
HTTP POSTHigh amount of POST requests are sent to an HTTP service serving on the target system to prevent the service from serving.
HTTPS GETHigh amount of GET requests are sent to an HTTPS service serving on the target system to prevent the service from serving.
HTTPS POSTHigh amount of POST requests are sent to an HTTPS service serving on the target system to prevent the service from serving.
SlowlorisA connection to an HTTP or HTTPS service serving the target system is established so that the connection remains open as long as possible. Thus, service is tried to be prevented. Slowloris is an effective attack on Apache web servers.
DNS QueryHigh-level DNS requests are sent to a DNS service that serves on the target system, preventing the corresponding DNS service from serving.
DNS Random Query Flood
High number of random DNS requests are sent to a random DNS service that serves on the target system, preventing the corresponding DNS service from serving.
Test Volumes

# BOTL3/4 TESTS (VOLUMETRİC) BANDWİDTH MBPS (UPTO)L7 TESTS (APPLİCATİON) RUNNİNG USER (UPTO)
503.000500.000
20012.0002.000.000
40024.0004.000.000
60036.0006.000.000
Security

Two-Factor Security

To perform a DDoS test; both the operator (the tester) and the customer (tested) must approve the relevant test. In this way, the test is only guaranteed to the party who wants to take the test.

Emergency Stop Button

The tests being performed can be stopped by one-touch if desired. In case of unexpected situations, tests can be stopped deliberately and restarted at any time.

Important Note:

In order to prevent abuse and misuse of LoDDoS, LoDDoS provider has to take some precautions before tests.

Depending on the type of tests performed, the customer's target information (FQDN, URL and IP address), attack types, bandwidth must be acquired by LoDDoS provider in order to perform tests effective, safe and secure.

The customer must prove the target information which is submitted is belongs to them before tests performed.


Benzer Ürünler