Evil DoS Attacks and Strong Defenses

Presented at DEF CON 21 (2013), Aug. 2, 2013, 2 p.m. (45 minutes).

On the attack side, this talk will explain and demonstrate attacks which crash Mac OS X, Windows 8, Windows Server 2012, and Web servers; causing a BSOD or complete system freeze.  The Mac and Windows systems fall to the new IPv6 Router Advertisement flood in thc-ipv6-2.1, but only after creating a vulnerable state with some "priming" router advertisements.  Servers fail from Sockstress--a brutal TCP attack which was invented in 2008, but still remains effective today.

On the defense side: the inside story of the DDoS that almost Broke the Internet.

In March 2013, attackers launched an attack against Spamhaus that topped 300Gbps. Spamhaus gave us permission to talk about the details of the attack. While CloudFlare was able to fend off the attack, it exposed some vulnerabilities in the Internet's infrastructure that attackers will inevitably exploit. If an Internet-crippling attack happens, this is what it will look like. And here's what the network needs to do in order to protect itself.


Presenters:

Links:

Similar Presentations: