IP-in-IP protocol routes arbitrary traffic by default

Overview IP Encapsulation within IP RFC2003 IP-in-IP can be abused by an unauthenticated attacker to unexpectedly route arbitrary network traffic through a vulnerable device. Description IP-in-IP encapsulation is a tunneling protocol specified in RFC 2003 that allows for IP packets to be...

ARDT - Akamai Reflective DDoS Tool

Akamai Reflective DDoS Tool Attack the origin host behind the Akamai Edge hosts and bypass the DDoS protection offered by Akamai services. How it works... Based off the research done at NCC: https://dl.packetstormsecurity.net/papers/attack/thepentestersguidetoakamai.pdf Akamai boast around 100,00...

RPC Portmapper Reflective DDoS Attacks

A number web hosting providers and businesses in the gaming industry were last month guinea pigs for a new type of amplified DDoS attack. Attackers have figured out how to use Portmapper, or RPC Portmapper, in reflection attacks where victims are sent copious amounts of responses from Portmapper...