Module 10
In module 10 we learn about sniffing, session hijacking, DDOS and DNS spoofing. Sniffing is a way of monitoring the data flowing over the network by using a tool called "network sniffer" .IP Spoofing is when a malicious actor trying to impersonate the known IP by doing a redirection on the DNS level.
This week I would like to share about a very hard to spot and defend a DDOS attack called R.U.D.Y or "R U Dead Yet". This attack is hard to detect since its submitting the data at a very slow pace similar to regular request which coming from legitimate users. To protect from this type of attack you need to have a reverse proxy between customers and your website and monitor all of the traffic for slow attack traffic like RUDY which is almost impossible if you have thousands of hits per minute on your website. The best way to protect is to use a third party such as Cloudflare which automate the detection and prevention process without the interruption on legitimate traffic.
https://www.cloudflare.com/learning/ddos/ddos-attack-tools/r-u-dead-yet-rudy/
No comments:
Post a Comment