DoSHTTP for doing Denial of Service Testing for a website

DoSHTTP is an easy to use and powerful HTTP Flood Denial of Service (DoS) Testing Tool for Windows. DoSHTTP includes URL Verification, HTTP Redirection and performance monitoring. DoSHTTP uses multiple asynchronous sockets to perform an effective HTTP Flood. DoSHTTP can be used simultaneously on multiple clients to emulate a Distributed Denial of Service (DDoS) attack. DoSHTTP can help IT Professionals test web server performance and evaluate protection software. DoS-HTTP was developed by certified IT Security and Software Development professionals.

Free download from Shareware Connection - DoSHTTP is an easy to use and powerful HTTP Flood Denial of Service (DoS) Testing Tool. DoSHTTP uses multiple asynchronous sockets to perform an effective HTTP Flood and includes URL Verification, HTTP Redirection and performance monitoring.

I was looking for a tool which could help me in testing Service denial cases for an exe which interacts with different web-servers but this tools is only for a particular URL which does not solve my purpose...




I did a basic thing using this tool. I provided www.Google.com as URL and asked to run the test using Mozilla4. I liked one thing about the tool that you need not to install different versions of Browsers to test this. Tool has implicit capability of simulating different browser behavior.

Second image shows the results where is says that 34% requests per second are responded by server when 4950 requests are made using Mozailla4.

I don't have much knowledge about this tool so explore more about this....

Here are few features of DoSHTTP but I don't have much details about these:

Features:

* Easy to use and powerful HTTP Flood Denial of Service (DoS) Testing Tool
* Uses multiple asynchronous sockets to perform an effective HTTP Flood
* Allows multiple clients to emulate a Distributed Denial of Service (DDoS) Attack
* Allows target port designation within the URL [http://host:port/]
* Supports HTTP Redirection for automatic page redirection (optional)
* Includes URL Verification that displays the response header and document
* Includes Performance Monitoring and Enhanced Reporting
* Allows customized User Agent header fields
* Allows user defined Socket and Request settings
* Supports numeric addressing for Target URLs
* Includes a comprehensive User Guide
* Clear Target URLs and Reset All options

What is Cloud Computing

Cloud computing is a style of computing in which dynamically scalable and often virtualised resources are provided as a service over the Internet.Users need not have knowledge of, expertise in, or control over the technology infrastructure "in the cloud" that supports them.

The concept incorporates infrastructure as a service (IaaS), platform as a service (PaaS) and software as a service (SaaS) as well as Web 2.0 and other recent technology trends that have the common theme of reliance on the Internet for satisfying the computing needs of the users. Examples of SaaS vendors include Salesforce.com and Google Apps which provide common business applications online that are accessed from a web browser, while the software and data are stored on the servers.

Cloud computing is a computing paradigm in which tasks are assigned to a combination of connections, software and services accessed over a network. This network of servers and connections is collectively known as "the cloud." Computing at the scale of the cloud allows users to access supercomputer-level power. Users can access resources as they need them.

How to Monitor online traffic on remotes machines on a Network?

Hi All,

For last 2-3 weeks I have been working on configuring Reverse proxy using Tomcat. I spent a lot of time and stuck at a point where my application stops working when it encounters an HTTPS request for logging in. HTTP traffic is working fine.

When checked I found that my proxy is not even getting the request.

Then I started exploring other methods through which I could monitor online traffic on different machines in my Network. I came across this solution. I have been using fiddler for debugging thing on my local machine.

Here are few basic steps:

NOTE : I have Master machine where I want to monitor the traffic.

1. Install Fiddler 2.x version on your machine. (Lower versions do not support this.)
2. Launch Fiddler on master machine
3. Go to Tools > Fiddler Options
4. Under General Tab, select the option "Allow Remote Computers to Connect"
5. Go to Start>Run
6. Type cmd : It will launch command prompt
7. Type ipconfig & Note IP address of your master machine

Now go to the machine which you want to monitor for web traffic.

1. Launch Internet Explorer
2. Go to Tools>Internet Options
3. Go to Connections Tab
4. Click "Lan Settings" button
5. Uncheck "Automatically Detect Settings"
6. Check the option "Use a Proxy Server...."
7. Click Advanced button
8. Add IP address of your master machine under 'Proxy Address to use' and port as 8888
9. Add this for HTTP & Secure
10. Click OK
11. Again click OK
12. Again click OK


Now restart Fiddler on Master machine.

On other machine enter www.google.com in internet explorer. Check what happens in Fiddler on Master machine.

YOU WILL SEE AN ENTRY FOR WWW.GOOGLE.COM

Similarly you can see other calls which are actually made on other machine. Similarly you can monitor traffic from more than one machine. Just enter IP with 8888 port in IE and you are done.

But still I am facing the same problem for HTTPS call for Log-in. I will share more details as I will get the solution.

+ VJ