In this video, you'll learn how to use Switchblade to do an HTTP flood and an HTTPS flood.
- [Voiceover] OWASP, the Open Web Application…Security Project is an initiative which identifies,…ranks and provides materials to support…testing of web vulnerabilities.…It's free to become part of the OWASP community…and its material is free to use.…The OWASP Top Ten Threats is published annually…and used as a reference for testing by many pen testers.…OWASP chapters appear in cities around the world…and there's an active wiki for users to share information…on the project.…Of recent years, it's expanded its remit to cover…mobile applications and internet of things.…
The links at the top right of the home page provide…easy access to key materials such as the Top Ten…and the OWASP Testing Guide.…OWASP also provides some very useful testing tools…such as the Offensive Web Testing Framework, or OWTF,…and defensive capabilities such as AppSensor.…The particular tool I want to demonstrate in this course…is the OWASP Switchblade tool.…This is used to test how susceptible a website is…to denial-of-service attacks.…
The tool was originally written by the Proactive Risk folks…
Author
Malcolm Shore
Released
6/10/2016Note: Our Ethical Hacking series will map to the 18 parts of the EC-Council's certification exam. This course maps to the 09 Denial of Service domain.
- What is denial of service?
- SYN flooding
- Smurf and URL flooding
- Deauthenticating a wireless host
- Flooding HTTP
- Using BlackEnergy
- Flooding SIP
- Detecting DoS with PeerShark
- Defeating DoS attacks
Skill Level Intermediate
Duration
Views
-
Introduction
-
Welcome1m 17s
-
-
1. What Is a Denial of Service?
-
2. Infrastructure Denial of Service
-
UDP flooding with LOIC3m 16s
-
ARP poisoning with ettercap5m 16s
-
Using NTP to amplify attacks5m 54s
-
3. Wireless Denial of Service
-
4. Application Denial of Service
-
Understanding BlackEnergy6m 12s
-
5. SIP Service Attacks
-
Flooding a SIP server6m 16s
-
-
6. Ransomware
-
Explaining ransomware3m 42s
-
Understanding CryptoLocker2m 44s
-
Understanding Petya2m 28s
-
-
7. Mitigation Techniques
-
Commercial anti-DOS services1m 49s
-
Conclusion
-
Summary1m 2s
-
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.
Share this video
Embed this video
Video: Testing web apps using OWASP Switchblade