Botnet-based Distributed Denial of Service (DDoS) Attacks on Web Servers: Classification and Art

Alomari, Esraa; Manickam, Selvakumar; Gupta, Brij B.; Karuppayah, Shankar; Alfaris, Rafeef

doi:10.5120/7640-0724

Cited by 121 publications

(68 citation statements)

References 22 publications

(26 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Moreover, the majority of the agents are fully configured and controlled through complex PHP scripts and encrypted communications, while a number of agents is used only to report statistics to a controlling Web site [9].…”

Section: ) Web-based Modelmentioning

confidence: 99%

“…DDoS attacks can be distinguished according to the TCP/IP layer of the protocol used during the attack [9], [17]: Network Level and Application Level. In Network Level DDoS attacks, either Network or Transport layer protocols are used to carry out the attack, while in Application Level DDoS attacks the victim resources (e.g., CPU, memory, disk/database, etc.)…”

Section: Protocol Levelmentioning

confidence: 99%

“…There are basically four types of network architectures that can be used to perpetrate a DDoS attack [1], [9] (Fig. 2a) is composed by clients, handlers (or masters) and agents (or daemons or secondary victims) [2].…”

Section: A Architecture Modelmentioning

confidence: 99%

See 2 more Smart Citations

Analysis of DDoS-Capable IoT Malwares

Donno¹,

Dragoni²,

Giaretta³

et al. 2017

Proceedings of the 2017 Federated Conference on Computer Science and Information Systems

View full text Add to dashboard Cite

Abstract-The Internet of Things (IoT) revolution promises to make our lives easier by providing cheap and always connected smart embedded devices, which can interact on the Internet and create added values for human needs. But all that glitters is not gold. Indeed, the other side of the coin is that, from a security perspective, this IoT revolution represents a potential disaster. This plethora of IoT devices that flooded the market were very badly protected, thus an easy prey for several families of malwares that can enslave and incorporate them in very large botnets. This, eventually, brought back to the top Distributed Denial of Service (DDoS) attacks, making them more powerful and easier to achieve than ever. This paper aims at provide an up-to-date picture of DDoS attacks in the specific subject of the IoT, studying how these attacks work and considering the most common families in the IoT context, in terms of their nature and evolution through the years. It also explores the additional offensive capabilities that this arsenal of IoT malwares has available, to mine the security of Internet users and systems. We think that this up-to-date picture will be a valuable reference to the scientific community in order to take a first crucial step to tackle this urgent security issue.

show abstract

Section: ) Web-based Modelmentioning

confidence: 99%

Section: Protocol Levelmentioning

confidence: 99%

See 1 more Smart Citation

Analysis of DDoS-Capable IoT Malwares

Donno¹,

Dragoni²,

Giaretta³

et al. 2017

Proceedings of the 2017 Federated Conference on Computer Science and Information Systems

View full text Add to dashboard Cite

show abstract

“…From the hacking point of view, botnets are considered as one of the most dangerous types of attacks, which can be utilized and controlled for any type of malicious purposes (e.g. most commonly for DDoS (Distributed Denial of Service) or spam attacks) [64]- [66], [73]. For example, recently, the Check Point researchers have discovered a new strain of malware on the Google Play Store.…”

Section: C) Man-in-the-middle (Mitm) Is a Kind Of Stealthymentioning

confidence: 99%

A Survey on Smartphones Security: Software Vulnerabilities, Malware, and Attacks

Ahvanooey¹,

Li²,

Rabbani³

et al. 2017

ijacsa

View full text Add to dashboard Cite

Abstract-Nowadays, the usage of smartphones and their applications have become rapidly popular in people's daily life. Over the last decade, availability of mobile money services such as mobile-payment systems and app markets have significantly increased due to the different forms of apps and connectivity provided by mobile devices, such as 3G, 4G, GPRS, and Wi-Fi, etc. In the same trend, the number of vulnerabilities targeting these services and communication networks has raised as well. Therefore, smartphones have become ideal target devices for malicious programmers. With increasing the number of vulnerabilities and attacks, there has been a corresponding ascent of the security countermeasures presented by the researchers. Due to these reasons, security of the payment systems is one of the most important issues in mobile payment systems. In this survey, we aim to provide a comprehensive and structured overview of the research on security solutions for smartphone devices. This survey reviews the state of the art on security solutions, threats, and vulnerabilities during the period of 2011-2017, by focusing on software attacks, such those to smartphone applications. We outline some countermeasures aimed at protecting smartphones against these groups of attacks, based on the detection rules, data collections and operating systems, especially focusing on open source applications. With this categorization, we want to provide an easy understanding for users and researchers to improve their knowledge about the security and privacy of smartphones.

show abstract

“…So, when a huge a number of fake request or queries come to the server, the server gets busy and the actual user request cannot be entertained in that period. Hence the denial of service occurred [25].Usually, the cloud network is a distributed system, therefore, distributed denial of service happens more often [20].…”

Section: Introductionmentioning

confidence: 99%

A Review of Techniques to Detect and Prevent Distributed Denial of Service (DDoS) Attack in Cloud Computing Environment

Sattar¹,

Shahid²,

Abbas³

2015

IJCA

View full text Add to dashboard Cite

Cloud computing has become one of the most demanding services over the internet. It has gained remarkable fame for past few years.But it is under the severe threats of internet security. One of the severe threats is Distributed Denial of Service (DDoS). DDoS occurs when a huge amount of packets are sent to a server from various computers. Botnet is one of the major causes that launch DDoS attack. Botnet is actually a network of bots or zombie computers that are under the control of attacker. Several techniques are available in the literature that provides solution to avoid DDoS attack.A survey on DDoS detection and prevention techniques and their comparative analysishave been done in this paper.

show abstract

Botnet-based Distributed Denial of Service (DDoS) Attacks on Web Servers: Classification and Art

Cited by 121 publications

References 22 publications

Analysis of DDoS-Capable IoT Malwares

Analysis of DDoS-Capable IoT Malwares

A Survey on Smartphones Security: Software Vulnerabilities, Malware, and Attacks

A Review of Techniques to Detect and Prevent Distributed Denial of Service (DDoS) Attack in Cloud Computing Environment

Contact Info

Product

Resources

About