https://github.com/dubniczky/slow-loris
Python implementation of the Slow Loris denial of service attack available on pip
https://github.com/dubniczky/slow-loris
attack ddos dos-attack network python
Last synced: about 1 year ago
JSON representation
Python implementation of the Slow Loris denial of service attack available on pip
- Host: GitHub
- URL: https://github.com/dubniczky/slow-loris
- Owner: dubniczky
- License: mit
- Created: 2022-07-27T17:43:52.000Z (almost 4 years ago)
- Default Branch: main
- Last Pushed: 2022-07-27T17:49:52.000Z (almost 4 years ago)
- Last Synced: 2025-02-06T19:49:11.741Z (over 1 year ago)
- Topics: attack, ddos, dos-attack, network, python
- Language: Python
- Homepage:
- Size: 51.8 KB
- Stars: 1
- Watchers: 2
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: readme.md
- License: LICENSE
Awesome Lists containing this project
README
# Slow Loris DoS Attack
Python implementation of the Slow Loris denial of service attack
## Support ❤️
If you find the project useful, please consider supporting, or contributing.
[](https://www.buymeacoffee.com/dubniczky)
## Disclaimer
This tool is intended for demonstrational purposes, so only use against your systems or against ones you have authorization for. I take no responsibility for your actions.
## Introduction
Slow Loris is a low-bandwidth denial of service attack, utilizing lots of connections to the same host and keeping them alive while sending minimal data.
When receiving a GET request, the server will wait until an empty line is sent to transmit the requested resource. We don't want any data in return, only to occupy the given connection.
The HTTP standard does not define a limit to the header count, but most frameworks have a limit defined in bytes, after which they will abort the connection. A default NodeJS 14+ setup has an upper limit of 16 kb. Using our current header size (average 15 bytes per header), it will take ~1,000 headers to fill this up.
If we consider an average of 5 seconds as a timeout period, one connection can occupy a channel for about 5000 seconds or around 1 hour 23 minutes. This happens while sending only 16kb of data.
This attack is most effective if:
- The host has a hard-limited number of possible connections at a time
- The host has no load balancing or firewalls
- The host has no DoS protection
- The attack is carried out by a distributed network of systems
## Requirements
- Python 3.10+
- Optional: NodeJS 16+
## Installation
### Using Pip package manager
```bash
pip install sloris
```
### Download repository
```bash
git clone https://gitlab.com/richardnagy/security/sloris
cd sloris
python setup.py install
```
## Usage
```bash
sloris HOST_IP [OPTIONS]
```
Help:
Use the following command to get a list of options.
```bash
sloris -h
```
Example run
```bash
sloris localhost -p 8080 -c 1000 -m GET -u /page -t 5 -pc true
```
## Demo server
The demo server is written in native NodeJS with zero dependencies. You can start it by using:
```bash
node testserver.node PORT
```
> Please note that on UNIX systems, root privileges are required to run this script on a port lower than 1024
## License
[MIT](./LICENSE)