Dos Attack From Hping

All probably familiar with the word DOS attack (Denial Of service) and its value. There are many ways how to do (to initiate) DOS attack.Let's first understand the essence of this attack. As in the previous tutorial I explained how the Wireshark , you should already understand that such packets, network traffic, and to know about how the network works. Today we delve deeper into all that were able to make a powerful DOS attacks.

What is the Dos attack?

Dos attack - an attack on a particular network with the goal to bring down the network by downloading it re excess useless traffic.

Often many types of DOS attacks. For example: all addicted to the opening of a plurality of terminals and ping sites or certain Ip-addresses on your network. This type of attack is called the ICMP Flooding . Also, there are SYN Flood, Teardrop, Nuke and THD. 
In order to successfully carry out such attacks need to know the TCP / IP base.

TCP / IP basic knowledge

Let's imagine that the customers need the data from a certain server, it needs to connect. This occurs as follows:

1. The client sends a SYN packet to the server
2. The server responds with a SYN + ACK packet
3. The client sends an ACK packet
4. Connection establishment

SYN - SYNCHRONIZE (To carry out the connection), the ACK - Acknowledgement (confirmation to the customer that received SYN)

Now that you understand how the connections between clients and servers, you can make a powerful DOS attacks.

What is needed for DOS attacks

We need a set hping . He has already set in the standard package and Kali Linux Backtrack.

Hping3 is a network tool able to send custom TCP / IP packets and display them as a ping program. Also it is able to scan the network to find open ports, pass through the Firewall, and more. Its full capabilities we will reveal in the future.

Hping3 Teams for Dos attacks

As I said Hping3 very serous tool. Here are the commands to run Dos attacks.

• -flood  : It sends the packets with the highest speed.
• -I           : Choose the right interface if you have more than
• -1           : The ICMP events
• -a           : the UDP modes
• -p           : port assignment
• -S           : Choose the SYN flag

Dos attack from Hping3

 

For example, you want to attack the IP address 11.11.11.11 to ping requests from IP addresses qq.qq.qq.qq

-1 -a --flood hping3 qq.qq.qq.qq  11.11.11.11

If you want to flood the IP 11.11.11.11 on port 80 with SYN requests to a false IP qq.qq.qq.qq

hping3 -S -a qq.qq.qq.qq --flood -p 80 11.11.11.11

Hping3 will send a SYN requests on port 80 . The victim will be forced to respond to the SYN + the ACK . Since we are using a fictional connection IP-address will never be realized. This will load the victims of trafficking and to use its resources, thus the victim will empty congested traffic.

Standard options Hping3 this attack TCP ports. To change the attack on UDP port just use the command -2 

hping3 --flood -a qq.qq.qq.qq -2 -p 443 11.11.11.11.

Now Hping will send requests to the specified UDP port. As an example, I took 443 .

This is just a drop in the bucket compared as professionals use this tool. In the next lesson we will show you other very useful ability of this program.