Shows how a DoS attack on a eCommerce site looks like and how it was thwarted. The attack was repelled by rate limit and subsequently by blocking the IP. luroConenct stack used.
Anatomy of a simple do s attack it can happen to you
1. Anatomy of a simple DOS attack
How it can bring down your site
2. DoS attach from a single IP
0
20
40
60
80
100
120
140
160
180
Anatom of a DDoS attack
total hits per minute rejected
Clock Time (10am to 6pm)
Initial hits undetected as attack
All hits rejected
Site had performance issues
Automatic detection and defense
Hitsperminute
3. DoS Attack
• Crawling the site
• Masquerading as google bot in the User Agent field
• Missed our initial scrutiny as we saw traffic rise and we got slow
response alerts since it was google bot
• We monitored non-BOT traffic – which continued to respond well
• Until we got errors
21/Sep/2018:16:54:13 +0530|
GET /kids-lehenga-choli.html?color=32889&price=-100
HTTP/1.1|444|0|-|
Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)