This lab teaches three different Denial of Service attacks and techniques to mitigate them:
- A TCP SYN Flood attack that exploits a weakness in the design of the TCP transport protocol,
- A slow HTTP attack called Slowloris that takes advantage of how HTTP servers work,
- A DNS amplification attack that exploits misconfigured DNS servers, of which there are plenty on the Internet.
Prerequisites
Basic web application knowledge (HTTP, URL parameters, etc.), networking concepts (TCP/IP, DNS, etc.), and familiarity with the Unix/Linux command line.
Expected Duration
2 hours, self-paced. Pause and continue at any time.
2 CPEs awarded on successful completion.
Availability
Included if you are a subscriber to any of the following training packages:
- Level 1: Enterprise Instructional Labs
- Introduction to Cybersecurity Lab Package
- Introduction to Network Security Lab Package
- Incident Response Package
- Target Developer 1
- Cyber Defense Incident Responder
- Cyber Defense Infrastructure Support Specialist 1
- Security Architect
- Level 3: Attack Scenarios, Attack/Defense/IR Exercises, and Instructional Labs
- Level 2: Attack/Defense/IR Exercises and Instructional Labs
