In this video, you'll learn how to use Switchblade to do an HTTP flood and an HTTPS flood.
- [Voiceover] OWASP, the Open Web Application…Security Project is an initiative which identifies,…ranks and provides materials to support…testing of web vulnerabilities.…It's free to become part of the OWASP community…and its material is free to use.…The OWASP Top Ten Threats is published annually…and used as a reference for testing by many pen testers.…OWASP chapters appear in cities around the world…and there's an active wiki for users to share information…on the project.…Of recent years, it's expanded its remit to cover…mobile applications and internet of things.…
The links at the top right of the home page provide…easy access to key materials such as the Top Ten…and the OWASP Testing Guide.…OWASP also provides some very useful testing tools…such as the Offensive Web Testing Framework, or OWTF,…and defensive capabilities such as AppSensor.…The particular tool I want to demonstrate in this course…is the OWASP Switchblade tool.…This is used to test how susceptible a website is…to denial-of-service attacks.…
The tool was originally written by the Proactive Risk folks…
Note: Our Ethical Hacking series will map to the 18 parts of the EC-Council's certification exam. This course maps to the 09 Denial of Service domain.
- What is denial of service?
- SYN flooding
- Smurf and URL flooding
- Deauthenticating a wireless host
- Flooding HTTP
- Using BlackEnergy
- Flooding SIP
- Detecting DoS with PeerShark
- Defeating DoS attacks