What is LoDDoS

What is LoDDoS?

LoDDoS is an automated DDoS testing platform which is managed through a web interface. The platform simulates real DDoS attacks against the organizations via real attack parameters.

This enables organizations to test the limits and efficiency of DDoS prevention systems before a real DDoS attack. The tests can be stopped, restarted, recorded, reported anytime and the reports can be stored to evaluate later on. Thus, the benefits of the DDoS prevention investments can be easily monitored.

LoDDoS Architecture

LoDDoS contains 3 main components. These components are;

1. Command control center where the attacks performed are defined, managed, monitored and reported,
2. Bot networks where the attacks are conducted,
3. Monitoring system where the target system’s health status is monitored..

Command control center is controlled via a web interface. There are different user roles for management, operations and monitoring. DDoS tests performed after 2 phase security authorization based on these user’s rights. Bot network runs on a cloud service provider and all the bots are managed by command control center. The number of bots on the bot network, the geographical location of the bots, the bandwidth generated can be all controlled via command control center based on the scope of the test. The monitoring type to be conducted by the monitoring component can also be controlled by the command control center.

LoDDoS Mimarisi

Supported DDoS Test Types

Volumetric DDoS Tests

The main purpose of volumetric DDoS attacks is to consume network and system resources of target systems and to prevent users from serving these systems.

Mostly, it is intended to fill the line by sending packets at the top of the internet bandwidth of the target systems.

Test Type Max Bandwidth Max Bot Number Description
ICMP Flood 30 600 A large amount of ICMP packets are sent to the target systems for testing.
UDP Flood 30 600 High volume of UDP packets is sent to a UDP service serving on the target system to prevent the UDP service from serving.
SYN Flood 25 600 Large amount of SYN packet is sent to a TCP service serving on the target system, preventing the corresponding TCP service from serving.
SYN-ACK Flood 25 600 Large amount of the SYN-ACK packet is sent to a TCP service serving on the target system, preventing the TCP service from serving.
ACK-FIN Flood 25 600 Large amount of ACK-FIN packets are sent to a TCP service serving on the target system to prevent the corresponding TCP service from serving.
Empty Connection Flood 25 600 A TCP service serving the target system is sent to a TCP service that does not have any flag marked with a high amount of flag, thus preventing the TCP service from being served.
All TCP Flags Flood 25 600 TCP packets marked with a high amount of all flags are sent to a TCP service that serves on the target system, thereby preventing the corresponding TCP service from serving.

DDoS Tests in Application Layer

The aim of the DDOS tests performed on the application layer is to open valid and real connections on the target systems and to force the limits of the systems and prevent them from serving.

Test Type Max. Number of Connections (Per Bot) Max Bot Number Description
HTTP GET 12.000.000 400 High amount of GET requests are sent to a HTTP service serving on the target system to prevent the service from serving.
HTTP POST 12.000.000 400 High amount of POST requests are sent to an HTTP service serving on the target system to prevent the service from serving.
HTTPS GET 12.000.000 400 High amount of GET requests are sent to an HTTPS service serving on the target system to prevent the service from serving.
HTTPS POST 12.000.000 400 High amount of POST requests are sent to an HTTPS service serving on the target system to prevent the service from serving.
Slowloris 12.000.000 400 A connection to an HTTP or HTTPS service serving the target system is established so that the connection remains open as long as possible. Thus, service is tried to be prevented. Slowloris is an effective attack on Apache web servers.
DNS Query 12.000.000 400 High-level DNS requests are sent to a DNS service that serves on the target system, preventing the corresponding DNS service from serving.

Security

Two-Factor Security| LoDDoS Automated DDoS Test Platform

Two-Factor Security

To perform a DDoS test; both the operator (the tester) and the customer (tested) must approve the relevant test. In this way, the test is only guaranteed to the party who wants to take the test.

Emergency Stop Button | LoDDoS Automated DDoS Test Platform

Emergency Stop Button

The tests being performed can be stopped by one-touch if desired. In case of unexpected situations, tests can be stopped deliberately and restarted at any time.


Important Note:

In order to prevent abuse and misuse of LoDDoS, LoDDoS provider has to take some precautions before tests.

Depending on the type of tests performed, the customer's target information (FQDN, URL and IP address), attack types, bandwidth must be acquired by LoDDoS provider in order to perform tests effective, safe and secure.

The customer must prove the target information which is submitted is belongs to them before tests performed.

Please check the areas.
Your request has been successfully sent!