DDoS Intro — Journey to BoNeSi tool. | by Sakthi Saravanan

To stress our system, one of the popular BotNet Simulator tools is BoNeSi. Note: DDoS Mitigation System should be trustworthy :) not the DDoS ... HomeNotificationsListsStoriesWritePublishedinITNEXTDDoSIntro—JourneytoBoNeSitool.WhatisDistributedDenialofServiceAttacks(DDoS)?Snippetfrommypocketbook:WhatisDDoS?BotNet?(linkbelow)CommonTypeofAttacks:Snippetfrommypocketbook:CommonTypesofDDoSAttacks(linkbelow)ConceptualIntrotoDDoSiscapturedinthebelowpocketbook.(free)ThepocketbookonDDoScanbedownloadedfreeinthefollowinglink:https://www.slideshare.net/SakthiSaravananShanm/distributed-denial-of-services-ddos-attacks-conceptual-introTherearemanyDDoSmitigationtoolsandstrategiesoutthere.Wehavetocarefullychooseandprepareoursystem.Tostressoursystem,oneofthepopularBotNetSimulatortoolsisBoNeSi.Note:DDoSMitigationSystemshouldbetrustworthy:)nottheDDoSattacker’ssystem.Let’spreparethesimpletestbedthatincludestheBoNeSitooltosimulateBotNet.Prerequisitetools:VirtualBoxinstalled[https://www.virtualbox.org/wiki/Downloads]UbuntuServerimage[https://releases.ubuntu.com/20.04/]Preparation:WeshouldrememberthataDDoSattackisrecommendedtorunundertheclosedtestbed(isolated).So(but)beforecreatinganisolatednetwork,let’spreparethesetupbyinstallingtheBoNeSitoolintheattackermachineandtheNginxserverinthevictim’smachine.SpinuptwoVMsusingVirtualBoxusingthedownloadedUbuntuimage.Let’scallthetwomachineasBoNeSi&BoNeSi-Target.—BoNeSiVMwouldberunningtheBoNeSitoolforcreatingDDoSattack.—BoNeSi-Targetwouldberunningasimplenginxserver(asvictim).StartthemachineusingasimpleNATnetworkadapter(only)>>>>[lateritwouldberemoved].—Thisistodownloadtherequiredpluginsandtools.OncetheVM’sareready,!!!—logintotheBoNeSimachinetoinstalltheBoNeSitool.First,installbelowBoNeSidependencylib’stocompiletheBoNeSitool.sudoaptinstallbuild-essentialsudoaptinstalllibpcap-devsudoaptinstalllibnet1-devsudoaptinstallautoconfsudoaptinstallautomakesudoaptinstallgccsudoaptinstallgitsudoaptinstallmakeTheninstalltheBoNeSibyrunningbelowcommands.gitclonehttps://github.com/Markus-Go/bonesi.gitautoreconf-f-i./configuremakemakeinstallAtthispointintime,BoNeSishouldbeupandready.tryrunning‘bonesi’command,youshouldbeabletoseethisbelowoutput.Note:IncaseyouareinasystemwherethereisnoInternet.YoucanSCPthelibrariesandBoNeSirepointoyourmachine.DownloadtherequiredbinariesfirstfromthesystemwhereyouhavetheInternetusingthebelowcommand:(substitutethelibrarynameinsteadof)apt-getdownload$(apt-rdepends|grep-v"^"|grep-v"libc-dev")Thiswouldcreatea.debpackage.SCPthese.debpackagestotheBoNeSimachineandrunthebelowcommandtoinstall:(fromthecopiedlocation)sudodpkg-i*.deb—logintotheBoNeSi-TargetmachinetoinstalltheNginxserver.Thiswouldactlikeavictimserviceusingthebelowcommands.sudoaptinstalldocker.iosudodockerpullnginx***Testbedispreparedfortheactualconfigurationsnow***SetupConfiguration:SavetheVMsstatefromVirtualBoxandshutdownthemachine.Remove(unticktheNATnetworkadaptoroption),againstarttheVMswiththeInternalNetworkoption(isolatedenvironment).VirtualBoxInternalNetworkAdaptorSettingsNote:BeforestartingtheVM,gotoSettingtabforeachVMandselectInternalNetworkasNetworkAdaptorintheNetworkTab.-Let'snametheInternalNetworkas(intnet1)=>youcanchangeit.**Selectthesame'InternalNetwork'(intnet1)forboththeVMs**IfyounoticetheIPconfigurationinsideVMonceitstartedwiththeInternalNetworkoption(using‘ifconfig-a’command),youwouldseenoIPconfiguredfortheinterface.Youhavetostaticallyconfigureitusingbelowcontentinthefile“/etc/netplan/00-installer-config.yaml”.Note:usetheinterfacenameproperly,inmycaseenp0s10isthename.Note:GatewayshouldbepointingtoBoNeSimachine'sIPfromBoNeSi-Targetmachine.Verifyusing,sudoiproute|grep^defaultOtherwise,youmightfacethisissue:https://github.com/Markus-Go/bonesi/issues/7Thenrunthecommand‘sudonetplanapply’andthenrebootthesystemifneededusing‘sudoreboot’.Atthispoint,IPwouldhavebeenconfiguredfortheinterface.VerifytheconnectionbetweenVMsusing‘ping’command,itshouldbesuccessful.NowstarttheNginxserverinBoNeSi-Targetmachineusingthebelowcommand:sudodockerrun-d--network="host"nginx:latestsudodockerpsNowwehavetwoVM’sinourisolatednetwork.OnewiththeNginxserverrunningonport80andotherwithBoNeSitool.It’stimetofireDDoSlikeattackstowardstheNginxserverfromtheBoNeSitoolusingthebelowsamplecommands.Note:my-ip.txtfilethatisusedinthecommandargumentshouldnotcontainIP’sthatispartofinternalnetwork,elseyouwouldfacethisissue.https://github.com/Markus-Go/bonesi/issues/11HTTPfloodrequest:sudobonesi-ptcp-u/-denp0s10-imy-ip.txt192.168.56.120:80TCPfloodrequest:sudobonesi-ptcp-denp0s10-imy-ip.txt192.168.56.120:80UDPfloodrequest:sudobonesi-pudp-denp0s10192.168.56.120:80ICMPfloodrequest:sudobonesi-picmp-denp0s10192.168.56.120:80SampleOutputTherearemanyexcitingoptionstogeneratevariouskindsofattacks(includingBotNetcountsandsoon).YoucouldexplorefurtheronBoNeSicommandhelp.IhopethisarticlehelpsinunderstandingtheDDoSandtheBoNeSitooltosomeextent.Thanks,AnkurSrivastavaandVishalMansurforprovidingmetheopportunitytoworkwiththistool.Thanks,ManuMathewsandKabilanTfortrustingmyabilities.Thatreallymadethedifferenceinmycareer!MorefromITNEXTFollowITNEXTisaplatformforITdevelopers&softwareengineerstoshareknowledge,connect,collaborate,learnandexperiencenext-gentechnologies.ReadmorefromITNEXTMorefromMediumMasterandReadReplicaDatabasesetupinDjangoHowtosetadefaultvaluetoAutocompleteforGoogleplacesAPIinRailsSeeingtheforestandnottheTrees — acohesiveclouddatastrategySummitDeFi — EverestCommunityDiscussionGreetingsTravelers!LitecoinCorev0.18.1ReleaseCandidateFollowtheGoogle+pageorTwitterforthelatestdevnews.Week23ACEmissionMemoWeek23=10:00EST3/7/2021to9:59EST3/14/2021AccessGrantedTheSinatraModseemedtogobyinablinkofaneye.Iwasn’tsureifanyoftheinformationIwaslearningwasstickingorifIwasjust…OurtripintoSiriShortcuts!HelloeverybodyfromLucioandAngelo,alsoknownas  Rinchiusi_In_Casa !GetstartedSakthiSaravanan90FollowersSoftwareDeveloperFollowRelatedRunningE2EtestsinaDockerizedEnvironmentOurFirstExpeditionintoOpen-SourceCodingHowdowegetpeopletoactuallyusethepackagewe’vewritten?ParseanUnstructuredInputTextStringintoanInternational,FormattedAddressinPythonHowtooperateDCmotorusingArduinoAdirectcurrentmotor(DCmotor)isaverybasictypeofmotor.DCmotorhasamazingfeatureslikehigherstartingtorque,variablespeeds…HelpStatusWritersBlogCareersPrivacyTermsAboutKnowable