From the course: Ethical Hacking: Denial of Service
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
RangeAmp attacks on the CDN
From the course: Ethical Hacking: Denial of Service
RangeAmp attacks on the CDN
- [Instructor] Content delivery networks are critical to getting data from where it's stored to users that need it. A team of Chinese academics claimed to have found a new way of using HTTP to amplify web traffic and bring down content delivery networks. The attack exploits implementation flaws in the HTTP range request. There were two specific attacks identified, the RangeAmp Small Byte Range attack which uses a CDN server to amplify the attack on a target. The second is the RangeAmp Overlapping Byte Ranges attack. In this case, the attack travels through the CDN being amplified as it goes. The result can be the CDN servers crash or are unable to perform their delivery function. The amplification factor varies depending upon the file size of the targets, but ranges from over 1000 to close to 50,000 for the Small Byte Ranges attack and around 3000 for the Overlapping Byte Ranges attack. While many of the vendors affected have…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.