UGN Security Forums
My ProfileMember DirectoryLogin
Search our ForumsView our FAQView our Site Rules
View our CalendarView our Active TopicsGo to our Main Page

 UGN Security Store
 

Network Sites UGN Security, Elite Web Gamers, Back of the Web, EveryDay Helper, VNC Web Design & Development
You are not logged in. [Log In] UGN Security Forums » Forums » UGN Security: Underground » General
      » Security Whitepapers » Stopping Automated Attack Tools
Register User    Portal Page     Forum List        Calendar     Active Topics     FAQ
January
Su M Tu W Th F Sa
1 2 3
4 5 6 7 8 9 10
11 12 13 14 15 16 17
18 19 20 21 22 23 24
25 26 27 28 29 30 31
Our Sponsors


Latest Postings
Research
by Hoodlum
12/30/08 11:48 PM
Summary Tab
by Unbro9
12/12/08 01:23 PM
Topic Options
Rate This Topic
#40156 - 08/08/05 03:39 AM Stopping Automated Attack Tools
HighLander Offline
UGN Member
*****

Registered: 03/07/02
Posts: 267
Loc: Canada
Stopping Automated Attack Tools : An analysis of web-based application techniques capable of defending against current and future automated attack tools.

Quote:
An almost infinite array of automated tools exist to spider and mirror application content extract confidential material. brute force guess authentication credentials, discover code injection flaws, fuzz application variables for exploitable overflows, scan for common files or vulnerable CGI's, and generally attack or exploit web-based application flaws. While of great value to security professionals, the use of these tools by attackers represents a clear and present danger to all organisations.

These automated tools have become increasingly popular for attackers seeking to compromise the integrity of online applications, and are used during most phases of an attack. Whilst there are a number of defence techniques which, when incorporated into a web-based application, are capable of stopping even the latest generation of tools, unfortunately most organisations have failed to adopt them.
A good one to read if your into network security
_________________________
Unless you try something to which you have not already succeeded ~ Then you shall NEVER grow

Top
Our Sponsors
Sponsor Our Sponsors

 Sponsor Advertisements help keep UGN Security Online.



Support UGN Security by Purchasing our Sponsors Products.
Top  
#40157 - 08/08/05 05:24 AM Re: Stopping Automated Attack Tools
Hallowed Be Thy Name Offline
Junior Member

Registered: 07/05/05
Posts: 4
Loc: N/A
Prime examples of what this article talks about is DoS and DDoS, and perhaps now to a lesser extent Smurfs. It seems now that most security corporations are now focusing on preventing attacks by increasing network security in perhaps a futile effort to eliminate or reduce the possible number of zombies/bots, but still this is a far cry from a full solution as there will allways be vunerable systems, and the ability to saturate lines or exhausting server memory.

Could a possible solution be to limit the frequency of packets under a certain size being sent on OS cleints, similar to flood control on web boards, these days with the size of most peoples lines small packets like that are rarely sent anyway, and most programs use far bigger or more complex packets ussaully. A real solution to DoS attacks is worth millions though.
_________________________
Assuming 0 is an invalid socket handle value.
Uncontrollably lame.

Top



Featured Member
Registered: 11/25/08
Posts: 1
Forum Stats
6895 Members
44 Forums
11308 Topics
46092 Posts

Max Online: 677 @ 06/30/07 10:06 PM
Top Posters
Gizmo 6960
UGN Security 4356
§intå× 3252
IceMyst 1449
SilentRage 1273
Ice 1146
pergesu 1134
Infinite 1039
jonconley 954
Girlie 903
Newest Members
tracphree, DEMS, billyinphilly, Rick, akirmak
6895 Registered Users
Who's Online
0 registered (), 11 Guests and 13 Spiders online.
Key: Admin, Global Mod, Mod
Latest News
Privacy statement · Mark all read
Contact Us · UGN Security · Top


Donate
   Get Firefox!
Get FireFox!