<img alt="" src="https://secure.leadforensics.com/89462.png" style="display:none;">

Nexusguard Blog

Cybersecurity best practices and DDoS defence strategies

Latest Stories

Nexusguard Research Nexusguard Research
Apr 26, 2019

Botnets go wireless

Nexusguard Research Nexusguard Research
Apr 08, 2019

DDoS attacks are getting more persistent and prolonged, but are more difficult to detect

Jimmy Chow Jimmy Chow
Mar 20, 2019

Can “cleanpipe” really deliver clean traffic?

Featured Stories

Blog Home
Tony Miu
By
October 22, 2014

Torshammer: A Tool with Slow-rate DDoS Impact on Apache Servers

  DDoS Torshammer

In our last blog post, we analyzed the attack tools used to launch DDoS attacks in Hong Kong. Today, I’d like to examine Torshammer – a slow-rate DDoS attack tool – that has been used frequently by hacktivists.

 

Slow-rate DDoS impact on apache servers

Tor’s Hammer is a slow-rate DDoS attack tool that is efficient and very disruptive on most apache servers.

Similar to regular volumetric DDoS attacks, slow-rate DDoS attacks exhaust web server resources by generating a large amount of connections for as long as possible. More technically, it uses the classic form of slow POST attack, generating HTTP POST requests and connections that will hold for around 1000-30000 seconds.

 

Instead of leveraging huge attack bandwidth or large amounts of HTTP requests per second, slow-rate DDoS attacks simply exploit the maximum current connection time apache servers can handle.

 

Stay tuned as we collect more information on Tor’s Hammer and its attack history in Hong Kong. For a more in-depth analysis on this slow-rate DDoS attack tool and its impact on servers, please visit my personal blog post.

Popular Stories

2019 Will Be an Eventful Period for Cybersecurity Jun 22, 2018
Little droplets form roaring ocean Jan 03, 2019
Can “clean pipe” really clean dirty traffic? Jul 17, 2018

Popular Tags

DDoS Cybersecurity Cyber Attack DDoS Protection CSP Amplification Attack DDoS Mitigation Memcached Attack Botnet Malware Vulnerabilities DDoS Attacks Financial Sector IoT Ransom SSDP Satori 4Chan Anarchy Attack Target Banking and Finance Bash Big Data Analytics Bitcoin Blackhat Blackhole CVE-2018-5390 Class-C Clean Pipe Cloud service provider Communications Service Provider DDoS Simulation Platform DDoS Threat Report Data Privacy Data Protection Device Limitations Fatal Blow Forecast G20 Summit GDPR ISP Lethal Problems Linux Kernel Meltdown Mirai Multi-vector attack Mumsnet Network Breach Nexusguard Partner Program Origin Protection Patch Pentagon Potential Problem Infrastructures RCE Vulnerability Replay Attacks SegmentSmack Shellshock Spectre TCP SYN flood Torshammer Trojan Turkish General Election Ukrainian Presidential Election Universities Wordpress World Cup big bill cleanpipe cloud service providers ddos for hire government zero-day attack
Similar to regular volumetric DDoS attacks, slow-rate DDoS attacks exhaust web server resources by generating a large amount of connections for as long as possible. 

Comments Form:

Related articles

Recent takedown of DDoS-for-hire websites just scratches the surface of a global problem

New tricks with old methods

Little droplets form roaring ocean