EDUCBA

EDUCBA

MENUMENU
  • Free Tutorials
  • Free Courses
  • Certification Courses
  • 600+ Courses All in One Bundle
  • Login

Types of DOS Attacks

By Priya PedamkarPriya Pedamkar

Home » Software Development » Software Development Tutorials » Network Security Tutorial » Types of DOS Attacks

Types of DOS Attacks

Introduction to Types of DoS Attacks

The following article provides an outline on Types of DOS Attacks. It is a malicious attack that occurs in online services and make them unavailable to the end-users. It is made by suspending the servers or interrupting their services in hosting the server. It is launched from several sets of devices which is globally referred to the botnet. It is a discrete set of service which attacks only in a single path of interconnected systems to throw a target with malicious traffic. It is an important reason for the happening of the denial of service attack.

Different Types of DoS Attacks

Given below are the different types of attacks:

Start Your Free Software Development Course

Web development, programming languages, Software testing & others

  • Volume-based attacks
  • Protocol attacks
  • Application-layer attacks
  • UDP attacks
  • ICMP attacks
  • Ping of death
  • Slowloris
  • NTP application
  • HTTP flood

1. Denial of Service Attacks

The DOS attacks can be broadly divided into three different types:

  • DoS attacks based on volume: The goal of this attack is to saturate the bandwidth of the affected site and magnitude is calibrated in bits per second. This type of attacks includes spoof-packet flood, ICMP flood and UDP flood.
  • DoS attacks based on the protocol: The goal of this attack is to consume the resources of real servers or the component implemented for intermediate communication such as load balancer and firewall. The transmission rate is measured in packets per second. This type of attacks includes Ping of Death, Smurf denial of services, SYN floods, and fragmented packet attacks.
  • DoS attacks on the application layer: The aim of the attack is to break down the web server and it is measured in request per second. It has a specific area of targets such as Apache, OpenBSD and Windows. The example of these attacks is GET/POST floods and Low-and-Slow attacks.

2. UDP Attacks

UDP flood attacks it to target and flood random ports on the remote host. The host continuously checks for the application ports and when no port is found, it leaves a reply with ICMP that is destination unreachable packet message. This affects the host resources and leads to inaccessibility of services. As the name implies, it affects and attacks the host with User Datagram Protocol packets (UDP).

3. ICMP Attacks

ICMP attacks consume both incoming and outgoing bandwidth because all the affected servers will frequently attempt to react with ICMP echo reply packets which result in shutdown or slow down of the entire system. It is similar to the UDP attacks but if approaches and affects the target with ICMP echo request packet and sends with a high transmission rate instead of waiting for any reply.

In the SYN flood attack, the requestor transmits the many SYN requests but never react to the response of host SYN-ACK or it transmits the SYN request from a spoofed or masked IP address. Now the host server, wait for the acknowledgement for every request from the receiver and the persistent binding of resources until the establishment of new connections which ultimately results in denial of services. It happens to exploit the defined weakness in the connection sequence of TCP. It is similar to a three-way handshake. When any SYN request needs to be initiated with TCP connection with any host servers, then it should be acknowledged by SYN-ACK responses and verified again by ACK messages from the requestor. Hence this type of attacks affects the responses from the requestor making denial of services.

4. Ping of Death

This type of attack includes transmitting continuous malfunctioned or malicious pings to the server. The maximum packet length of the IP packet including the header is 65535 bytes. The data link layer has the limits of maximum frame size as 1500 bytes over an Ethernet. In this scenario, a maximum IP packet is segmented across multiple IP fragments and receiving host possess the IP packets or fragments to complete the entire IP.

Popular Course in this category
CDN Training (2 Courses)2 Online Courses | 6+ Hours | Verifiable Certificate of Completion | Lifetime Access
4.5 (5,473 ratings)
Course Price

View Course

Related Courses
OSPF Training Program (2 Courses)Penetration Testing Training Program (2 Courses)

The malware manipulation of fragment data and ends up with recipient packets which are higher than 65535 bytes when it is reassembled. It can be overwhelmed from the memory space allocated for the packet which results in denial of service for even legitimate and real packets.

5. Slowloris

This type of attacks gives a huge impact such as enabling one web server by bringing down the other web server without impacting other ports or services of the host network. It does this by holding multiple connections to the host web server as long as possible and achieves this by establishing a connection to the host server but it transmits only partial requests.

It persistently transmits more headers of HTTP but never satisfies the request. The host system maintains the open port or services for this false connection which affects the space for legitimate requests. As the name insists, this causes a slowdown of the entire system by overwhelming of concurrent connection range.

6. Amplification of NTP

In this type of attack, the hacker attacks the public accessing Network Time Protocols to overflow a host server by generating UDP traffic. It is described as amplification stabbing since the ratio of a query to response in such cases lies in the range of 1:20 or 1:200 or much more than that. It signifies that the hacker gets a list of open NTP servers and produce the maximum volume of DoS attacks and distressing maximum bandwidth. This type of attack only focuses on NTP protocols.

7. HTTP Flood

Here the hacker attacks the legitimate and generic HTTP GET or POST response to exploits a web application or web server. It doesn’t use any spoofing techniques or reflection methods or any malfunctioned packets. It consumes only minimum bandwidth than other types of attacks to slow down the application or a host server. It is more effective when it pushes the system or application to allot maximum possible resources in response to every unit request.

Conclusion

Hence there are many types of attacks which works on different principles. By providing a rapid and robust security system, the crucial server and application can be protected from these types of vulnerable attacks.

Recommended Articles

This is a guide to Types of DOS Attacks . Here we discuss the introduction and 7 different types of DOS Attacks. You may also have a look at the following articles to learn more –

  1. Types of Network Security Attacks
  2. Types of Network Devices
  3. Types of Cyber Attack
  4. Types of Cyber Security

All in One Software Development Bundle (600+ Courses, 50+ projects)

600+ Online Courses

50+ projects

3000+ Hours

Verifiable Certificates

Lifetime Access

Learn More

0 Shares
Share
Tweet
Share
Primary Sidebar
Network Security Tutorial
  • Attacks
    • Types of Network Attacks
    • What is Trojan Horse Virus
    • What is DOS
    • Types of DOS Attacks
    • DDos Attack Mitigation
    • Ransomware Attack  
    • Types of Cyber Attack
    • What is a Brute Force Attack
    • What is a Phishing Attack
    • What is Cyber Attack
    • What is DDoS Attack
    • What is Man In The Middle Attack
    • What is Man In The Middle Attack
    • What is Ransomware
    • What is Pharming
    • What is Phishing
    • What is CSRF
    • DNS Amplification Attack
    • Denial of Service Attack
  • Basics
    • Security Consultant Definition
    • Security Policies
    • What is Network Security
    • What is Data Security?
    • What is Cryptography
    • Cryptography Techniques
    • Cryptography Tools
    • Data Security Techniques and Privacy
    • Digital Signature Cryptography
    • Java Cryptography
    • Basics of Cybersecurity
    • What is Network Topology
    • Algorithms and Cryptography
    • HTTP Methods
    • Security Technologies
    • Security Architecture
    • Network Topologies
    • What is a Physical Address?
    • Logical Address
    • What is Storage Area Network?
    • Mobile Ad Hoc Network
    • What is Computer Networks?
    • Security Principles
    • What is Remote Access?
  • Protocols
    • What is TCP Protocol
    • What is TCP/IP
    • How do IP Addresses Work?
    • Routing Protocols Types
    • What is Telnet
    • What is TFTP
    • What is DHCP
    • What is SFTP
    • Address Resolution Protocol
    • Internet Control Message Protocol
    • Simple Mail Transfer Protocol
    • Internet Security Protocols
    • SMTP Protocol
    • Types of Networking Protocols
    • User Datagram Protocol
    • Data Link Layer
    • Data Link Layer Services
    • Network Layer
    • Transport Layer Protocols
    • What Is Networking Protocols
    • TFTP
    • What is ARP
    • Basic Fundamental Of Networking
    • What is IPv4
    • What is IPv6
    • CIFS Protocol
    • What is SMB?
    • What is EIGRP
    • What is LLDP?
  • Routing
    • What is Router
    • Types of Routers
    • Dynamic Routing
    • Routing Algorithms
    • Routing Protocol
    • What is Routing
    • What is Static Routing
    • Important Types of DNS Servers (Powerful)
  • Algorithm
    • IDEA Algorithm
    • MD5 Algorithm
    • Symmetric Algorithms
    • Diffie Hellman Key Exchange Algorithm
    • Digital Signature Algorithm
    • Encryption Algorithm
    • Advanced Encryption Standard
    • Asymmetric Encryption
    • ElGamal Encryption
    • HMAC
    • DES Algorithm
    • Brute Force Algorithm
    • SHA Algorithm
    • RSA Algorithm
    • What is Digital Certificate?
    • Certificate Revocation
    • RC5
  • Encryption/ Decryption
    • Encryption process
    • Public Key Encryption
    • Symmetric Key Encryption
    • What is Encryption
    • What is Decryption
    • Types of Cipher
    • Transposition Techniques
    • What is Steganography
    • One Time Pad
    • Steganography Techniques
  • Hosting
    • Types of Web Hosting
    • Free Web Hosting Sites
    • What is Hosting
    • What is VPS Hosting
    • What is Web Hosting
    • Types of Domain
    • VPN Applications for PC
    • Why we use VPN?
    • What is Virtual Host?
  • Firewalls
    • What is a Firewall?
    • Types of Firewalls
    • Firewall Devices
    • Firewall Uses
  • Advanced
    • Cryptosystems
    • Configuring DHCP Server
    • Block Cipher modes of Operation
    • TCP/IP Model
    • Types of Network
    • Types of Network Devices
    • Types of Network Topology
    • Types of Intrusion Prevention System
    • Types of Proxy Servers
    • Types of Websites
    • Types of NAT 
    • Mobile IP
    • Career in Automobile Design
    • What is TFS
    • What is NAT
    • What is OSI Model
    • Data Link Layer OSI Model
    • What is Cross Site Scripting
    • Applications of Sensors
    • ARP Packet Format
    • Asymmetric Information
    • Autoencoders
    • What is FTP Server?
    • IPS Tools
    • IPv4 Header Format
    • IPv6 Header Format
    • Authentication Header
    • Kerberos
    • Network Mapper
    • Network Scanning Tools
    • Network Mapping Tools
    • Network Access Control
    • Vulnerability Assessment Tools
    • Network Sniffer
    • Networking Commands
    • Networking Devices
    • Networking Strategies
    • Digital Certificate
    • What is a Digital Signature?
    • Digital Signature Softwares
    • Digital Signature Types
    • Digital Signature vs Digital Certificate
    • PKCS
    • What is FTP
    • FTP Commands
    • What is MIME?
    • What is Smart Card?
    • Networking Ports
    • Mutual Authentication
    • Password Authentication
    • Data Masking 
    • Authentication Tokens
    • Biometric Authentication
    • What is IP?
    • IPSec
    • Secure Electronic Transaction
    • What is CIDR
    • Static Binding and Dynamic Binding
    • What is SSL
    • PKIX
    • Public Key Infrastructure
    • What is Wireshark
    • Daisy Chain Topology
    • Markov Logic Network
    • Security engineering
    • SNMP Monitoring Tools
    • Network Analysis Tools
    • Server Monitoring Tools
    • Network Discovery Tools
    • Network Management Tool
    • SIEM Tools
    • OSINT Tools
    • Multiple Ping Tool
  • Interview Questions
    • Network Security Interview Questions
    • Networking Interview Questions
    • EIGRP Interview Questions

Related Courses

CDN Training

OSPF Certification Training

Penetration Training Course

Footer
About Us
  • Blog
  • Who is EDUCBA?
  • Sign Up
  • Corporate Training
  • Certificate from Top Institutions
  • Contact Us
  • Verifiable Certificate
  • Reviews
  • Terms and Conditions
  • Privacy Policy
  •  
Apps
  • iPhone & iPad
  • Android
Resources
  • Free Courses
  • Java Tutorials
  • Python Tutorials
  • All Tutorials
Certification Courses
  • All Courses
  • Software Development Course - All in One Bundle
  • Become a Python Developer
  • Java Course
  • Become a Selenium Automation Tester
  • Become an IoT Developer
  • ASP.NET Course
  • VB.NET Course
  • PHP Course

© 2020 - EDUCBA. ALL RIGHTS RESERVED. THE CERTIFICATION NAMES ARE THE TRADEMARKS OF THEIR RESPECTIVE OWNERS.

EDUCBA Login

Forgot Password?

EDUCBA
Free Software Development Course

Web development, programming languages, Software testing & others

*Please provide your correct email id. Login details for this Free course will be emailed to you
Book Your One Instructor : One Learner Free Class

Let’s Get Started

This website or its third-party tools use cookies, which are necessary to its functioning and required to achieve the purposes illustrated in the cookie policy. By closing this banner, scrolling this page, clicking a link or continuing to browse otherwise, you agree to our Privacy Policy

EDUCBA

*Please provide your correct email id. Login details for this Free course will be emailed to you
EDUCBA
Free Software Development Course

Web development, programming languages, Software testing & others

*Please provide your correct email id. Login details for this Free course will be emailed to you

Special Offer - CDN Training Learn More