Slowloris is basically an HTTP Denial of Service attack that affects threaded servers.

Last update: Jun 19, 2022

Related tags

Networking slowrise-ddos-tool

Overview

slowrise-ddos-tool

What is Slowloris?

Slowloris is basically an HTTP Denial of Service attack that affects threaded servers. It works like this:

We start making lots of HTTP requests.
We send headers periodically (every ~15 seconds) to keep the connections open.
We never close the connection unless the server does so. If the server closes a connection, we create a new one keep doing the same thing.

This exhausts the servers thread pool and the server can't reply to other people.

How to install and run?

You can clone the git repo or install using pip. Here's how you run it.

sudo pip3 install slowloris
slowloris example.com

That's all it takes to install and run slowloris.py.

If you want to clone using git instead of pip, here's how you do it.

git clone https://github.com/0demoncat0/slowrise-ddos-tool
cd SLOWRISE-DDOS-TOOL
python3 ddos.py example.com

SOCKS5 proxy support

However, if you plan on using the -x option in order to use a SOCKS5 proxy for connecting instead of a direct connection over your IP address, you will need to install the PySocks library (or any other implementation of the socks library) as well. PySocks is a fork from SocksiPy by GitHub user @Anorov and can easily be installed by adding PySocks to the pip command above or running it again like so:

sudo pip3 install PySocks

You can then use the -x option to activate SOCKS5 support and the --proxy-host and --proxy-port option to specify the SOCKS5 proxy host and its port, if they are different from the standard 127.0.0.1:8080.

Configuration options

It is possible to modify the behaviour of slowloris with command-line arguments. In order to get an up-to-date help document, just run slowloris -h.

-p, --port
- Port of webserver, usually 80
-s, --sockets
- Number of sockets to use in the test
-v, --verbose
- Increases logging (output on terminal)
-ua, --randuseragents
- Randomizes user-agents with each request
-x, --useproxy
- Use a SOCKS5 proxy for connecting
--https
- Use HTTPS for the requests
--sleeptime
- Time to sleep between each header sent

License

The code is licensed under the MIT License.

Slowloris is basically an HTTP Denial of Service attack that affects threaded servers.

Related tags

Overview

slowrise-ddos-tool

What is Slowloris?

How to install and run?

SOCKS5 proxy support

Configuration options

License

Owner

DEMON cat

Ultimate transformation library that supports validation, contexts and aiohttp.

Tool written on Python that locate all up host on your subnet

Jogo da forca simples com conexão entre cliente e servidor utilizando TCP.

Ctech Didik Auto Script VPN 👨🏻‍💻Youtube: Ctech Didik

HTTP proxy pool server primarily meant for evading IP whitelists

Multiple-requests-poster - A tool to send multiple requests to a particular website written in Python

sync application configuration and settings across multiple multiplatform devices

Converts from PC formatted MAC addresses (hardware addresses) to Cisco format or vice-versa

NSX-T infrastructure as code - SDDC deployment

A pure-Python KSUID implementation

pureSxS - A tool to export Component Based Servicing packages from a full Windows installation

The OUCH Project - OUCH Server/Client

CloudProxy is to hide your scrapers IP behind the cloud

Aiotor - a pool of proxies, shifting on each request

QUIC and HTTP/3 implementation in Python

WebRTC and ORTC implementation for Python using asyncio

Mass querying whois records using whois tool

The best way to send tokens into a specific server, which can be used for discord bots, and some tools..

Simple python script for automated network scans with random name generator(useful for CTF boxes).

KoreaVPN - Create a VPN App for Mac Using Automator