DDOS Attack

-
DOS attack stands for Denial Of Service Attack.It means single attacker attacking single target. One computer and one Internet connection is used to flood the server with packets between valid and non valid request

The attacker sends the large number of legitimate looking to the server in a way that the server cannot really distinguish between valid and non valid request.

It will overwhelm the system to a point that the server cannot handle the capacity anymore.

The point of DOS attack is overload the targeted servers bandwidth and other computer resources.This will make the server inaccessible to others.


What is DDOS Attack?

DDOS stands for Distributed Denial Of services Attack.It is most similar to DOS Attack, but the results are much difference.

Instead of one computer and one Internet connection in normal DOS Attack. DDOS Attack utilize many computer and many connection the computer behind the such an attack are often contributed in the whole world and will be part of what is known as abundant.

So the first step of launching a DDOS Attack is recruit army of BOTS. Inorder to computer into a BOT the attacker develops a specialize malware which spreads many vulnerable computer as possible.

Malware can spread via compromised websites, e-mail attachments or through organization networks.Users who was tricked to running such malware will intensionally turn their computer into a BOT and provide access points to he attackers to their computers.

Once a computer turns into a BOT it connect to the attacker's command and control server and begins to accepts the orders from the centralized machines.

The orders from the commands and control server includes the direction of launching an attack from he BOT malware to particular target and the selecting attacking methods.

An army of path is named as BOTNET and usually consists of thousands of BOTS. Anytime the BOT's owner launch an attack.They send messages to their command and control server with the instruction to perform the attack on particular target.

Any infected machines in the BOTNET will comply by launching all coordinated will time distributed attack known as DDOS Attack.

Main difference between DOS and DDOS Attack 

DOS : one attacker in DOS attack.
DDOS : Target server will be overloaded by hundreds or even thousands of requests.
             Therefore, its much harder for server

How to prevent DDOS Attack

It comes from many one is TORJAN .Attackers usually sends link with TROJAN and if the victim is open the link the attacker can be done whatever he wants with the computer.So that he simplest way to avoid he DDOS attack is don't open any unknown link.

Many professional company helps to mitigate the attack.The company install net flow protocol which is monitors traffic your sites. If you're serving your own data make sure all your routers drop junk packets blocks ICMP and strong firewall setup.
  1. Large companies leaves a significantly larger capacity than they need for DDOS attack. If the attacker unable to take over enough traffic of the the site the attack is generally ineffective.
  2. Automated Mitigation : Some company have a tool which monitors net flow data from routers to determine baseline for traffic.If detect any traffic that steps the out of the zone, DDOS mitigation tools can attract the traffic and filter it out.
  3. Third part provider : Many large companies often uses DNS base redirect service or BGP based service to protect them from attack. 
Those techniques can help the company stay on-line during an attack.


Comments

Post a Comment

Popular posts from this blog

Easy understanding of MVC design architecture

-
Image
There are lots of principle and methodology in software engineering field. Through this blog I am going to describe MVC design pattern. Real life example : Let's consider you are going to buy a suit for your wedding. You supposed to go your favorite tailor's shop and choose your desired suit's design which is shown by helper boy. Helper boy handed over the chosen design to that tailor( Controller ). Tailor collect the suitable items such as cloths material, needle, thread, button ,zip ( Model collect the information from database ).Then tailor stich the suit and give it to helper boy( VIEW ). Helper boy pack that suit with covered bag and give it to you. The same scenario is happening in MVC design architecture. MVC is an architectural design pattern. It's separate application into three main different components such as Model, View, Controller.  These components are having specific functionalities.  Model Model is simple class. It's contain busin
Read more

A / B Testing

-
Image
Introduction to A/B testing A/B testing is the method of comparing two versions of  a software or app against each other to indicate which one performs better. Every company has different marketing goals. We can't always ask our customers what they think of our site or emails. For this situation A/B testing plays the major role to improve our content and build a strategy. A/B testing also known as split tests. It's allow to compare two version of something to learn which is more effective. I simply conclude that do you like version A or version B? How A/B testing works  In A/B testing we take a webpage or app screen and modify it to create a second version of the same page. For example if you want to change the image and it's caption font, you may create four pages  Arial with images.  Arial without images. Times new roman with images. Times new roman without images.  These changes can be as simple as a single button, or complete redesign of the pa
Read more

Firewall

-
Image
We can easily said that firewall is a program which is prevents unauthorized access to or from a private network. Firewalls are tools that can be used to enhance the security of computers connected to a network, such as LAN or the Internet. They are an integral part of a comprehensive security framework for your network. What firewall do? Defend resources Validate access Manage and control network traffic Record and report on events Act as an intermediary A Personal firewall is important when You surf the Internet at home using an 'always on' broadband connection You connect to the Internet via a public WiFi network in a park, cafe or airport You run a home network which needs to be kept isolated from the Internet You wish to be kept informed when any program on your computer attempts to connect to the Internet Most Personal Firewalls are highly configurable so you can easily create security policies to suit your individual needs.
Read more