HOW TO PROTECT AGAINST DDOS ATTACKS - STOP DENIAL OF SERVICE

DDoS Attacks: Situation Overview

Over the last decade, Distributed Denial of Service (DDoS) attacks have continued to proliferate, becoming one of the primary threat types facing virtually every industry and business area that is exposed to the public Internet.Therefore, DDoS protection must be at the core of a successful security strategy.

DDoS attacks attempt to bring down and infiltrate Web sites by flooding the site's origin server with bogus requests, often from multiple locations and networks. If allowed to proceed unchecked, this DDoS attack traffic can produce results ranging from slow page loads to a complete blockage of legitimate site traffic.

These types of attacks can originate from a variety of sources, including 'hacktivists,' for-profit hackers, state-sponsored hacking groups, and others. In many cases, DDoS attacks leverage the force multiplication advantage of 'botnets,' essentially armies of computers that are penetrated and recruited to generate attack traffic unbeknownst to their own user or administrator.

DDoS Mitigation

Given the growing number and scale of DDoS attacks, planning for DDoS attack detection and mitigation is a critical IT function. Since it's virtually impossible to build out sufficient infrastructure to scale in response to a large DDoS attack, solutions like Akamai's Kona Site Defender are increasingly being deployed by owners of Web properties across virtually every industry. Cloud-based solutions like Kona Site Defender offer built-in scalability and global reach to defend against most common types of DDoS attacks, as well as attacks against web applications (SQL Injections, Cross Site Scripts, etc.) and direct-to-origin attacks.

How Kona Site Defender Blocks DDoS Attacks

Kona Site Defender mitigates DDoS attacks by absorbing DDoS traffic targeted at the application layer, deflecting all DDoS traffic targeted at the network layer such as SYN Floods or UDP Floods, and authenticating valid traffic at the network edge. This built-in protection is "always on", and only Port 80 (HTTP) or Port 443 (HTTPS) traffic is allowed. Bursting fees can be capped so users are protected from DDoS traffic running up service fees, and flexible caching maximizes offload from origin.

For added protection, many organizations add a defense layer that protects the Domain Name Server from being overloaded and compromised by Denial of Service attacks, such as Akamai's Fast DNS solution. Both of these solutions leverage the power of the Akamai Intelligent Platform™, which consists of more than 160,000 servers deployed across over 1,200 networks in more than 95 countries.

Akamai's Global Scale Helps Combat DDoS Attack Traffic

The worldwide distribution and massive scale of the Akamai Intelligent Platform™ enables Web sites to stay available without re-routing traffic or impacting performance. Akamai handles 5.5Tbps of traffic daily on average and has handled peak traffic flows of over 8Tbps. And DDoS mitigation capabilities are implemented natively in path so protection is provided only one network hop from the point of request—NOT at the customer origin.

Source : https://www.akamai.com/us/en/resources/protect-against-ddos-attacks.jsp

How to DDos a Website Like a Pro (Windows Only)

Welcome to this short and easy tutorial on hacking and DDosing (is that even a word I don't know) anyways lets get started

First of all DDos means distributed denail of service attack, and yes i don't know what the HELL it means either. but anyway DDosing is where you spam a website or server with so much data that it forces them to close down for a short amount of time. Be warned though, if you have a bandwith cap then this will waste it within a minute, so only do this if you're using an ISP with unlimited bandwith. P.S you will need quite a lot of computers to shut websites down but you can at least lag them a lot. It's good for winding you friend up if he has a minecraft server or something though.

Step 1: Getting the Software

To DDos, first your going to have to get the software. The software we are going to be using in this tutorial is called Low Orbit Ion Cannon (abreviated LOIC) you can get this from http://sourceforge.net/projects/loic/ Once you download the file, go ahead and extract it to your desktop.

Step 2: Targeting the Website

Now open LOIC (obvious but I want to get some of them little credit thingys so i'm trying to make it however many words long) and you will be prompted with a screen a little bit like this

First of all find the box that says 1. Select your target and fill it in. If you want to DDos a website, put the web adress in the url box, if you have an ip you want to DDos then put the ip in the box.Then press the lock on button next to the text box you filled in.

Step 3: Configuring the Attack

Skip the big button that says ima chargin mah lazer and go to section 3 that says attack options. keep timeout ,http subsite and the speed bar the same but in tcp/udp message enter a random message, in port type whatever port you want to attack, and in method select UDP. (if your attacking a website keep the port the same, and for minecraft servers it is usually 25565) also, uncheck wait for reply and keep threads at 10. If you have a good pc you can change it to 20 but no more than 20. in the end, your screen should look like this:

Step 4: Fire the Lazer!!!!!!!!!!!!!!!!!!!

Now all thats left to do is press the big button that says IMMA CHARGIN MAH LAZER. once you have pressed that, you should see the requested collumn in attack status be filling up with loads of numbers and stuff. This is how many times it has requested that page or minecraft server or whatever from the server.

Hope you enjoyed this tutorial, and be sure to give that kudos stuff, even if it does get rid of them little credit thingys.

Source : http://null-byte.wonderhowto.com/how-to/ddos-website-like-pro-windows-only-0148872/