Skip to content
/ DosAttack_DosDetection Public

This is code that includes a DOS attack on a specified IP address which only sends SYN packets to that IP address. The code also includes a DOS detection, which detects the attack and specifies which IP or MAC address the attack is being issued from.

2 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

justinelhalabi/DosAttack_DosDetection

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
DosAttack.py
DosAttack.py
 
 
DosDetection.py
DosDetection.py
 
 
IP_Detection.py
IP_Detection.py
 
 
Mac_Detection.py
Mac_Detection.py
 
 
README.md
README.md
 
 

Repository files navigation

DosAttack_DosDetection

Description: Attacker program: This program creates a TCP syn attack on a specified IP address specified by the user, and then would run different ways of attack depending on how anonymously the attackers want to proceed (the code was written with the help of the tool scapy however all codes were written by Hussein Nasrallah and none were taken from internet)

Detection program: This program detects the Denial of Service attack in 3 cases:

  • Many SYN packets (mainly more than 15) having the same IP address are received in a short period of time. (the code was written by Nour Ardo and none was taken from the internet)
  • Many SYN packets having the same MAC address are received in a short period of time. (the code was written by Justin El Halabi and none was taken from the internet)
  • Large traffic is detected within a short period of time to signal a possibility of denial of service. This would be helpful for the attacks where the IP or the MAC addresses are spoofed. (the code was written by Nour Ardo and none was taken from the internet) Note that the attacks with significant time interval between consecutive packets (attacks with 3T and 4T) are hard to be detected. They could be hidden as normal traffic.

There are 4 programs:

  1. DosAttack.py: the DOS attack program (written by Hussein Nasrallah)
  2. IP_Detection.py: DOS detection according to IP Address (written by Nour Ardo)
  3. Mac_Detection.py: DOS detection according to MAC address (written by Justin El Halabi)
  4. DosDetection.py: Complete DOS detection (Combined the 2 and 3 programs above by Justin El Halabi)

Instructions how to run the programs:

Attacker program: Launch the ‘DosAttack.py’ program using python(from terminal or any other IDE however make sure to have the package of scapy fully installed) like any other program and then the program would first require the user to enter the target IP address and then chose 1 of 4 types the first which is the normal attack the second would spoof the attacker’s IP the third would spoof the attacks’ mac address and the fourth would spoof the attacker’s both mac and IP address for more anonymity and then after the attack choses the mode he can also chose 1 of 4 speeds in which he specifies the interval between each packet spent to try to keep the attack hidden at first the first few packets will show warning about not finding a specific mac address and then when the mac gets found the attack would procced normally

Detection Program: Similar to the Attack program, launch the ‘DosDetection.py’ file and the program should automatically run, and once it detects an attack it will immediately show with a print statement on the screen.

About

This is code that includes a DOS attack on a specified IP address which only sends SYN packets to that IP address. The code also includes a DOS detection, which detects the attack and specifies which IP or MAC address the attack is being issued from.

Resources

Readme
Activity

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages