Notes On Security
Unmaintained blog of Sergey Shekyan
(Move to ...)
Home
▼
Sunday, January 6, 2013
Follow The RFC!
›
About 40 minutes before our WebSocket presentation at BayThreat I decided to do the final dry run. The slide with stacktrace of crashed des...
7 comments:
Wednesday, January 25, 2012
How I Knocked Down 30 Servers from One Laptop
›
Cross-posted from Qualys Security Labs. Following the release of the slowhttptest tool with Slow Read DoS attack support , I helped sever...
14 comments:
Thursday, January 5, 2012
Are You Ready For Slow Reading?
›
Cross-posted from Qualys Security Labs. Imagine a line at a fast food restaurant that serves two types of burgers, and a customer at the ca...
4 comments:
Wednesday, November 2, 2011
How to Protect Against Slow HTTP Attacks
›
Cross-posted from Qualys Security Labs. Slow HTTP attacks are denial-of-service (DoS) attacks in which the attacker sends HTTP requests in...
18 comments:
Monday, September 19, 2011
Testing Web Servers for Slow HTTP Attacks
›
Cross-posted from Qualys Security Labs. Following the release of the slowhttptest tool , I ran benchmark tests of some popular Web server...
12 comments:
Thursday, August 25, 2011
New Open-Source Tool for Slow HTTP DoS Attack Vulnerabilities
›
Cross-posted from Qualys Security Labs. Slow HTTP attacks are denial-of-service (DoS) attacks that rely on the fact that the HTTP protoco...
6 comments:
Thursday, July 7, 2011
Identifying Slow HTTP Attack Vulnerabilities on Web Applications
›
Cross-posted from Qualys Security Labs. Slow HTTP attacks rely on the fact that the HTTP protocol, by design, requires requests to be com...
1 comment:
‹
Home
View web version