SOFTWARE OF THE SYSTEM FOR SIMULATING THE PROCESS OF DISTRIBUTED DENIAL OF SERVICE-ATTACKS ON WEBSITES
DOI:
https://doi.org/10.32689/maup.it.2024.2.7Keywords:
precedent diagram, L4 and L7 protocols, bandwidthAbstract
Distributed Denial of Service (DDoS) is one of the most widely used methods of cyber attacks on the Internet. This is an attack that aims to overload a website, server or network with traffic in order to deny legitimate users access to the resource. For this, attackers use a large number of computers that have been compromised or armed with special software, called a botnet. DDoS attacks can be used both by attackers and in terms of protection against them (to test websites in order to anticipate such attacks). The purpose of the work is development of software for testing Internet resources for bandwidth through L4 and L7 protocols. Methodology. The following tools and development tools were used to implement the project: Python programming language; PuTTy client part; server part of PostgreSQL; administration and development tool for PostgreSQL pgAdmin; a distributed data store that stores information in Redis memory; Git distributed version control system; Visual Studio Code development environment; Hetzner cloud hosting service. Scientific novelty. The most used today techniques for carrying out DDoS attacks has been analyzed in that paper. The main stages of their application have been described in detail. The implementation of the main parts of the project, namely accounts, powerful servers, testing protocols, deployment has been considered. Testing of Internet resources for bandwidth was chosen to fulfill the goal. Two protocols L4 and L7 were used for this purpose. The diagram of precedents to describe the operation of the system of testing Internet resources was built. A program that allows you to estimate the bandwidth of websites in order to protect them from DDoS attacks has been developed. The testing process is considered in stages using an example. Conclusions. The developed software can be used to test Internet resources for bandwidth through L4 and L7 protocols.
References
ДжулійВ.М.,ЧорненькийВ.І.,СавіцькаО.О.Методвиявленнятапротидіїрозподілениматакам,спрямованимна відмовувобслуговуванні. ВісникХмельницькогонаціональногоуніверситету.2019.Вип.No1.C.127–134.
Матеріали Міжнародної науково-практичної конференції «Кіберпростір в умовах війни та глобальних ви- кликів ХХІ століття: теорія та практика» (м. Одеса, 24 листопада 2023 р.). Одеса, 2023. 301 с.
Таненбаум, Ендрю С. Комп'ютерні мережі. К.: Видавництво «Підручники і посібники», 2023, 992 с.
КошоваО.П.,ЧерненкоО.О.,ЧілікінаТ.В.,КомарІ.І.Особливостірозробкиweb-застосунківдлясистемидис- танційного навчання з допомогою бібліотеки React. Системи та технології, 65(1), 2023. С. 20–31.
Кошова О. П., Ольховська О. В., Тацій Д. С., Олексійчук Ю. Ф., Черненко О.О. Розробка веб-додатків та сервісів на платформі NODE.JS. Таврійський науковий вісник. Серія: Технічні науки, 2023. Вип. 2. С. 78–89.
Garcia, Carlos, and Smith, Andrew. Cybersecurity Essentials: Protecting Your Web Assets from DDoS Attacks. New York: McGraw-Hill Education, 2020.
GhaffariF.,GharaeeH.,ArabsorkhiA.Cloudsecurityissuesbasedonpeople,processandtechnologymodel:Asurvey.
In Proceedings of the 2019 5th International Conference on Web Research (ICWR), Tehran, Iran, 24–25 April 2019; IEEE: Piscataway, NJ, USA, 2019; pp. 196–202.
Foschini,Luca,etal."EffectiveDDoSMitigationinCloudEnvironments". IEEETransactionsonCloudComputing,2020.
Kumar, Sandeep. Advanced DDoS Mitigation Techniques. London: Wiley, 2019.
Kundi M., et al. An Adaptive Distributed Denial of Service Attack Prevention Technique in a Distributed
Environment. Sensors, 2023. 23(14), 6574. Access mode: https://www.mdpi.com/1424-8220/23/14/6574
LiuB.,ChenJ.,HuY.Modedivision-basedanomalydetectionagainstintegrityandavailabilityattacksinindustrial
cyber-physical systems. Comput. Ind. 2022, 137.
Owens, John. «DDoS Attacks: Evolution, Detection, and Mitigation». – San Francisco: No Starch Press, 2021.
Sridhar-Research-Lab. DDoSim: Distributed Denial of Service Simulator. GitHub. 2023. Access mode: https://
github.com/sridhar-research-lab/DDoSim
Stallings, William. «Network Security Essentials: Applications and Standards». Upper Saddle River, NJ: Pearson, 2016.
