28 matches found
NTP Mode 7 GET_RESTRICT DRDoS Scanner
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NTP Mode 7 GETRESTRICT DRDoS Scanner', 'Description' = %q This module identifies NTP servers which permit "reslist" queries and obtains the list ...
DNS Amplification Scanner
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'DNS Amplification Scanner', 'Description' = %q This module can be used to discover DNS servers which expose recursive name lookups which can be...
NTP Mode 7 PEER_LIST Denial Of Service Scanner
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NTP Mode 7 PEERLIST DoS Scanner', 'Description' = %q This module identifies NTP servers which permit "PEERLIST" queries and return responses that...
Portmapper Amplification Scanner
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Portmapper Amplification Scanner', 'Description' = %q This module can be used to discover Portmapper services which can be used in an amplificati...
NTP Clock Variables Disclosure
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NTP Clock Variables Disclosure', 'Description' = %q This module reads the system internal NTP variables. These variables contain potentially...
NTP Mode 7 PEER_LIST_SUM Denial Of Service Scanner
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NTP Mode 7 PEERLISTSUM DoS Scanner', 'Description' = %q This module identifies NTP servers which permit "PEERLISTSUM" queries and return response...
NTP Mode 6 REQ_NONCE DRDoS Scanner
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NTP Mode 6 REQNONCE DRDoS Scanner', 'Description' = %q This module identifies NTP servers which permit mode 6 REQNONCE requests that can be used ...
NTP Mode 6 UNSETTRAP DRDoS Scanner
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NTP Mode 6 UNSETTRAP DRDoS Scanner', 'Description' = %q This module identifies NTP servers which permit mode 6 UNSETTRAP requests that can be use...
Hackers Begin Weaponizing TCP Middlebox Reflection for Amplified DDoS Attacks
Distributed denial-of-service DDoS attacks leveraging a new amplification technique called TCP Middlebox Reflection have been detected for the first time in the wild, six months after the novel attack mechanism was presented in theory. "The attack … abuses vulnerable firewalls and content filteri...
IKE/IKEv2 protocol implementations may allow network amplification attacks
Overview Implementations of the IKEv2 protocol are vulnerable to network amplification attacks. Description CWE-406: Insufficient Control of Network Message Volume Network Amplification IKE/IKEv2 and other UDP-based protocols can be used to amplify denial-of-service attacks. In some scenarios, an...
Portmapper Amplification Scanner
This module can be used to discover Portmapper services which can be used in an amplification DDoS attack against a third party. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Portmapper...
Using BitTorrent Vulnerabilities to Launch Distributed Reflective DoS Attacks
Researchers warn that several protocols used by the peer-to-peer file sharing service BitTorrent, including a handful of clients that run the protocol, can be leveraged to carry out distributed reflective denial of service DRDoS attacks. Distributed reflective denial of service, or DRDoS attacks,...
How to Exploit BitTorrent for Large-Scale DoS Attacks
A flaw discovered in several widely used BitTorrent applications, including uTorrent, Vuze and Mainline, could be used to carry out a devastating distributed denial of service DDoS attack that makes it very easy for a single undetectable hacker to bring down large sites. A new research by Florian...
Microsoft SQL Server (MSSQL) Resolution Service Amplification Reflected DRDoS (UDP)
The remote Microsoft SQL Server MSSQL allows distributed reflection and amplification DRDoS attacks. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
NTP Mode 6 UNSETTRAP DRDoS Scanner
This module identifies NTP servers which permit mode 6 UNSETTRAP requests that can be used to conduct DRDoS attacks. In some configurations, NTP servers will respond to UNSETTRAP requests with multiple packets, allowing remote attackers to cause a distributed, reflected denial of service aka,...
NTP Mode 6 REQ_NONCE DRDoS Scanner
This module identifies NTP servers which permit mode 6 REQNONCE requests that can be used to conduct DRDoS attacks. In some configurations, NTP servers will respond to REQNONCE requests with a response larger than the request, allowing remote attackers to cause a distributed, reflected denial of...
NTP Mode 7 PEER_LIST DoS Scanner
This module identifies NTP servers which permit "PEERLIST" queries and return responses that are larger in size or greater in quantity than the request, allowing remote attackers to cause a distributed, reflected denial of service aka, "DRDoS" or traffic amplification via spoofed requests. This...
NTP Mode 7 GET_RESTRICT DRDoS Scanner
This module identifies NTP servers which permit "reslist" queries and obtains the list of restrictions placed on various network interfaces, networks or hosts. The reslist feature allows remote attackers to cause a distributed, reflected denial of service aka, "DRDoS" or traffic amplification via...
NTP Mode 7 PEER_LIST_SUM DoS Scanner
This module identifies NTP servers which permit "PEERLISTSUM" queries and return responses that are larger in size or greater in quantity than the request, allowing remote attackers to cause a distributed, reflected denial of service aka, "DRDoS" or traffic amplification via spoofed requests. Thi...
SNMP GETBULK Reflected DRDoS
The remote SNMP daemon allows distributed reflection and amplification DRDoS attacks. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...