Electronic Books

660
Practical Hacking Techniques and Countermeasures
Lab 94: Denial-of-Service ??“??“ UDP Flood
DoS UDP Flood Attack: UDP Flood Attack
Prerequisites: None
Countermeasures: Secure ACLs, Bastion servers/workstations
Description: An attacker sends a UDP packet to a random port on the
target system. The target system receives a UDP packet and determines
what application is listening on the destination port. When no application
is waiting on the port, it generates an ICMP packet of ???destination
port unreachable??? to the spoofed source address. When enough UDP
packets are delivered to ports on the victim to overwhelm the system,
the system will deny legitimate connections.
Procedure: Install RafaleX, set parameters, and execute against the target.
Verify with the packet sniffer.

Install the RafaleX application as outlined in Lab 48.

Install the Ethereal application as outlined in Lab 41.

Open the Ethereal application and start capturing data (refer to Lab 41).

Open the RafaleX application by clicking on the RafaleX.exe icon.
The RafaleX application will start.
Denial-of-Service (DoS)
661
Set the Source IP to a spoofed IP address (10.10.10.10). Set the Source
Port to 123.
Set the Destination IP to a valid target IP address. Set the Destination
Port to 321.
662
Practical Hacking Techniques and Countermeasures
Click on the UDP tab. Enter some random text for the payloads of the
packets. Enter the Nb of packets to 9999.


Pages:
201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225