anti-ddos test solutions ?

Stefan Fouant sfouant at shortestpathfirst.net
Wed Mar 17 18:28:03 UTC 2010


> -----Original Message-----
> From: Charles N Wyble [mailto:charles at knownelement.com]
> Sent: Wednesday, March 17, 2010 12:16 PM
> To: nanog at nanog.org
> Subject: Re: anti-ddos test solutions ?
> 
> bit gossip wrote:
> > Nessus is a vulnerability scanner:
> >
> > http://www.nessus.org/nessus/
> >
> > Ixia provides a full Nessus implementation in one of its platform.
> >
> 
> Well these days I would use http://www.openvas.org and
> http://www.metasploit.org
> for vulnerability scanning and analysis.
> 
> However that wouldn't be a DDoS, but could certainly lead to DOS.

If you can get your hands on a PCAP from a previous attack, you could also use something like Bit-Twist which will allow you to manipulate things like the destination IP and also the transmission rate, etc.  Pretty useful tool to include in the DDoS simulation toolbox.

http://bittwist.sourceforge.net/

Stefan Fouant, CISSP, JNCIE-M/T
www.shortestpathfirst.net
GPG Key ID: 0xB5E3803D





More information about the NANOG mailing list