- SecurityFocus - http://www.securityfocus.org/
Site maintains an extensive database of vulnerabilities and solutions including Denial Of Service attacks.
- Smurf Amplifier Registry - http://www.powertech.no/smurf/
The Smurf Amplifier Registry (SAR) lets you probe Internet connected IP networks to see whether or not they are configured in a way that will allow perpetrators to use them for smurf amplification.
- DoShelp.com - http://www.doshelp.com/
Tools and patches to protect a person's computer from hackers, Denial of Service, and other intrusions.
- Denial of Service Help Page - http://www.irchelp.org/irchelp/nuke/
Advice for victims of Denial Of Service Attacks, geared towards users of IRC (Internet Relay Chat)
- Microsoft Windows Update - http://windowsupdate.microsoft.com/
Latest bug fixes for Microsoft Windows, including fixes for some possible DoS attacks.
- Cisco - http://www.cisco.com/warp/public/707/newsflash.html
Strategies to protect against distributed denial of service (DDoS) attacks. This article applies primarily to sites using Cisco equipment.
- Tools Stunt DoS Attack - http://www.internetweek.com/newslead01/lead020501.htm
InternetWeek article written in the aftermath of the Denial of Service attack on Microsoft's domain name servers discusses various ways to combat these tactics.
- Smurf Attack Information - http://www.pentics.net/denial-of-service/white-papers/smurf.cgi
White paper describing and providing practical information on how to minimize the effects of smurf attacks.
- Trinoo Analysis - http://staff.washington.edu/dittrich/misc/trinoo.analysis
An analysis of the DoS Project's trin00 master/slave programs, which implement a distributed network denial of service tool.
- Stacheldraht Analysis - http://staff.washington.edu/dittrich/misc/stacheldraht.analysis
An analysis of "stacheldraht", a distributed denial of service attack tool, based on source code from the "Tribe Flood Network" distributed denial of service attack tool.
- Defying Denial of Service Attacks - http://www.networkmagazine.com/article/NMG20001130S0002
Discussion of the main DoS methods and how to protect your PCs and servers from them. [NetworkMagazine.com]
- Distributed Denial of Service Attacks - http://www.networkmagazine.com/article/NMG20000512S0041
A DDoS exploit multiplies the disruptive power of denial of service attacks. The article discusses methods used and how to detect them. [NetworkMagazine.com]
- DDoS Is Neither Dead Nor Forgotten - http://www.networkmagazine.com/article/NMG20010125S0003
February 1991 article on state of DDoS attacks, and what has been learned to that point.
- Whatis Definition of Denial of Service - http://whatis.techtarget.com/definition/0,289893,sid9_gci213591,00.html
Definition plus discussion of various types of DoS attacks and how they work, including Buffer Overflow, SYN, Teardrop and Smurf.
- DDoS World - http://www.ddosworld.com/
Knowledge base: including news articles, white papers, and advisories.
- GCN.com: How to Stop a Service Denial Attack Before It Stops You - http://www.gcn.com/vol20_no17/news/4573-1.html
Shawn P. McCarthy provides a quick overview of various kinds of Distributed Denial of Service (DDoS) attacks. He also explains why defending against this type of attack requires upstream infrastructure providers to cooperate with the victim.
- Denial of Service Database - http://www.attrition.org/security/denial/
Details of many attacks: categorized by platform affected and using OSAT notation. No longer updated.
- Netscan.org - http://netscan.org/
Public service which proactively scans for networks acting as smurf amplifiers.
- Magnification Attacks: smurf and fraggle - http://pintday.org/whitepapers/dos-smurf.shtml
Security white paper describing some common magnification (smurf) attacks, what they are, and how to avoid them.
- Webscreen Technology - http://www.webscreen-technology.com/
Offers filtering appliances with DDoS mitigation features.
- Network Ingress Filtering - http://www.faqs.org/rfcs/rfc2267.html
A simple, effective, and straightforward method for network administrators to prohibit DoS attacks which use forged IP addresses.
- Denial-of-service attack - http://en.wikipedia.org/wiki/Denial_of_service
Description of DDoS and prevention resources from Wikipedia Encyclopedia.
- Protecting Networks from DoS Attacks - http://www.allot.com/html/solutions_enterprise_dos_attacks.shtm
Solution paper on the use of bandwidth management to protect networks from distributed denial of service attacks and malicious traffic.
- Distributed Denial of Service - Protecting Critical Systems - http://www.hostlibrary.com/DistributedDenialofService-ProtectingCriticalSystems-ddos.html
White paper describing and giving detailed information on distributed denial of service (DDoS) attacks and prevention and intervention methods. Illustrated.
- Denial of Service attacks and countermeasures - http://cesare.dsi.uniroma1.it/Sicurezza/doc/dosAttacks.pdf
Presentation notes and illustrations on denial of service attacks and countermeasures given at the University of Rome "La Sapienza"
- Understanding Denial-of-Service Attacks - http://www.us-cert.gov/cas/tips/ST04-015.html
A brief overview on identifying DoS attacks from the US-CERT (United States Computer Emergency Response Team).
- Zombie Zapper - http://www.bindview.com/Support/RAZOR/Utilities/Windows/ZombieZapper_form.cfm
Free, open source tool that can tell a zombie system to stop flooding. Zombie Zapper works against Trinoo, TFN, Stacheldraht, Troj_Trinoo (the trinoo daemon ported to Windows), and Shaft.
- Defeating DDoS - http://www10.org/cdrom/papers/409/
An illustrated white paper describing Distributed Denial of Service (DDoS) attack methodology and prevention.
|
