Dos Attack Basic Tutorial for Beginners

Dos Attack Basic Tutorial for Beginners

Created by-Amin Nagpure.(sukhoi) / 4/8/99.

----Disclaimer---

Writer don’t intend to getinformation by his writing to be used in an illegal way ,don’t do it, if youget caught then you have yourself to blame. My information is just for educational purpose only.

This tutorial is written for absolute newbies who don’t knowwhats dos attack , technical details is reduced so that basic concept aboutwhat it is get cleared.ok

So don’t email me and say you lack technical knowledge oryour tutorial is less in it.

There are so many available on the net. This one is forabsolute newbie okay.

Dos attacks-“Denial of Service” Attack

It’s the attack to deny the service to the legitmate user,so that he suffers there are several reasons to do that.

Mostly likely reason is ‘NAST-YINESS’

Okay there are two ways for dos attacks one is the lame wayand the other is the elite way

Lame way

Email Bombs – it s the technique in which a person email Alcis flooded with emails, it’s the lamest form of DOS attack. All a person has to do is go on the net get someemail bomber like UNA or KABOOM put the victims address and there ya go , hisemail address will be flooded with the unwanted emails, there is also anotherway put his email address into some porn subscription he will get bombedwithout you doing anything ,LOL

When the victims email alc gets flooded he has a pain indifferentiating and deleting the unwanted emails and it’s the huugee task.

And if the victim is the admin of the server and his email alcthere is flooded it also looses his disk space.

Continous login – suppose a server is configured to allowonly specified amount login attempts then ,and you know his username you canlock his account, by attempting to connect by his name to the server which willlock his account and there ya go , the legitmate user wont be able to log in,the reason, you locked his Alc.

Okay now the neophyte way, its not that elite way but somewhat better than the lame way, atleast you are doing something technical.

Syn Flooding

This is a exploit in tcp/ip method of handshake .

Read some basics on tcp/ip okay lets start.

Normal way :-

Syn-packet is sent to the host by the client who intendsto  establish a connection

           

               SYN

Client --------------à Host

Then in the second step host replies with syn/ack packet tothe client 

                SYN/ACK  

Client  ß--------------Host

Then in the third and the last step

Client replies with ack packet to the host and then thethreeway handshake is complete

Okay got it now ..?

Now  in attack

Several  syn packet issent to host  via spoofed ip address(bador dead ip addresses) now then what happens the host replies with syn/ackpacket  and host waits for the ackpacket.

But however the ip address don’t exist  it keeps waiting ,thus it queues up and eatsthe system resources and thus causes the server to crash or reboot.

Land attack

A land attack  issimilar to syn attack but instead of bad ip address the ip address of thetarget system itself is used. This creates an infinite loop , and the targetsystem crashes.

But however almost all systems are configured against thistype of attacks.

Smurf Attack

A smurf attack  is asort of brute force dos attack , in which a huge number normally the routerusing the spoofed ip address from within the target network , so when it getsthe ping it echos it back causing the network to flood. Thus jamming thetraffic

Udp flooding

This kind of flooding is done against two target systems andcan be used to stop the services offered by any of the two systems. Both of thetarget systems are connected to each other, one generating a series ofcharacters for each packet received or in other words, requesting UDP charactergenerating service while the other system, echoes all characters it receives.This creates an infinite non-stopping loop between the two systems, making themuseless for any data exchange or service provision.

Ping of death

This Attack don’t work now as all the servers are patchedagainst this type of attack

In this attack a target system is pinged with data packetexceed the normal size allowed by the tcp/ip i.e 65536. this will cause thesystem to reboot or hangup.

Tear Drop

When the data is passed from one system into another it isbroken down into smaller fragments, and then in the reciving  host they are again reassembled .

These packets have an offset field in there TCP header partwhich specifies from which part to which part that data carries or the range ofdata that it is carrying. This along with the sequence numbers, this helps thereceiving  host to reassemble the data.

In tear drop the packets are sent with the overlappingoffset field values thus the reciveing host is unable to reassemble them andcrashes.

There is new trentcalled DDOS attack where several computers mostly (hacked computers) for dosattacks

               to get all latest hacking tips n tricks  directly to ur inbox