Tuesday, November 1, 2011

THC-SSL-DOS | TOOL TO KILL SSH SERVERS

Specialty : average laptop computer with windows Or any LINUX operating system and a standard DSL connection. are enough. ! :D


How it works :
Open command prompt.
Change the prompt directory to the drive in which you have unzipped the tool.
Change directory to thc-ssl-dos.
Now run the exe file. Pass the command thc-ssl-dos to execute it. 

Now in order to perform attack using this tool , you will have to pass the following command;
thc-ssl-dos TARGET IP --accept
On passing the command the tool will start its process.



Download THC-SSL-DOS from here.


If you find any difficulty in the process, let me know through your valuable comments so that I will update with screen shots.


For Linux users :


Use "./configure; make all install" to build and Run : ./thc-ssl-dos 127.3.133.7 443


1.The average server can do 300 handshakes per second. This would require 10-25% of your laptops CPU.
2. Use multiple hosts (SSL-DOS) if an SSL Accelerator is used.
3. Be smart in target acquisition: The HTTPS Port (443) is not always the best choice. Other SSL enabled ports are more unlikely to use an SSL Accelerator (like the POP3S, SMTPS, ... or the secure database port).



Counter measures :


No real solutions exists. The following steps can delay (but not solve) the problem:
1. Disable SSL-Renegotiation
2. Invest into SSL Accelerator





NOTE : FOR EDUCATIONAL PURPOSES ONLY. I AM NOT RESPONSIBLE FOR 
CONSEQUENCES.




If you enjoyed this post, make sure you subscribe to my RSS feed! Comments are encouraged

No comments:
Write comments