Security Tools/Windows


NEORAY 2008. 6. 30. 21:48
No, 29
FileSize: 108 KB
OS: All Win
Licence: Freeware
Language: English
Country: Usa
Hit: 11
Rating: (110KB, DN:5)

Educational Use Only

For those of you that know about the bandwith limits most hosts put on webspace (angelfire geocities) you'll understand this.
Basically this program allows you to build your own Headers and sends to use against webservers.

Eg. someone on a limited bandwith has a large file on their webserver.
you enter the location of the file in the target address box as Http://
Then you build the header which would be as follows

GET ? HTTP/1.1
Accept: */*
Content-type: application/x-www-form-urlencoded

The and are variables as explained in the program those will be replaced as follows.

= Http://
= Some random number between 1 - 5000

The use of the ? in the header means that each request is treated as a different file thereby bypassing any caching features used on some proxy servers.

The program can also be used for POST floods. Most online forms such as the ones used on forums use the post command to relay data back and forth between the client and server. The program allows you to recreate these post sends and then flood the server with the custom built sends incorporating the variables to maximise the impact.

Post Flood
Target address would of course be the processing file

Header would be as follows:-

Accept: */*
Content-type: application/x-www-form-urlencoded

Post would contain the data you need to transfer.

function=post&parent=&id=1056265&top_id=&nos_parent=&sender=&member_id=&c=&name= &email=&header=&text=¬ify_sender=yes&SUBMIT=Post

The easiest way to determine what information needs to be sent in the packet use a packet sniffer such as CommView by Tamosoft and to filter outgoing packets to port 80.

Thats the post info i used for the forum below.
Example of the post flood
Sorry Thelma and Louise, gossips gets you in trouble sometimes ;o)