호스팅 TIP > DDOS > DDOS 문자열 공격

호스팅 TIP

보안

시스템

프로그래밍

DDOS

월간 인기 게시물

	게시물 17건

DDOS 문자열 공격

글쓴이 : 최고관리자 날짜 : 2010-07-07 (수) 15:37 조회 : 259418

글주소 :

문자열 공격

서비스 데몬포트에 일련된 특정 문자를 패킷헤더에 포함시켜서 서비스를 마비시키는 공격으로 의미없는 스트링들을 심어서 보낸다.
Netfilter STRING MATCH 를 통해서 막아버린다.
키보드에서 조합할수 있는 모든 문자열을 만들어서....ㅋㅋ
잘걸린다....

-N STRING_MATCH
-A INPUT -j STRING_MATCH
-A STRING_MATCH -m string --string "AAAAAAAAAAAAAAAAAAAAAAAAAA" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "BBBBBBBBBBBBBBBBBBBBBBBBBB" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "CCCCCCCCCCCCCCCCCCCCCCCCCC" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "DDDDDDDDDDDDDDDDDDDDDDDDDD" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "EEEEEEEEEEEEEEEEEEEEEEEEEE" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "FFFFFFFFFFFFFFFFFFFFFFFFFF" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "GGGGGGGGGGGGGGGGGGGGGGGGGG" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "HHHHHHHHHHHHHHHHHHHHHHHHHH" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "IIIIIIIIIIIIIIIIIIIIIIIIII" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "JJJJJJJJJJJJJJJJJJJJJJJJJJ" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "KKKKKKKKKKKKKKKKKKKKKKKKKK" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "LLLLLLLLLLLLLLLLLLLLLLLLLL" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "MMMMMMMMMMMMMMMMMMMMMMMMMM" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "NNNNNNNNNNNNNNNNNNNNNNNNNN" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "OOOOOOOOOOOOOOOOOOOOOOOOOO" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "PPPPPPPPPPPPPPPPPPPPPPPPPP" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "QQQQQQQQQQQQQQQQQQQQQQQQQQ" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "RRRRRRRRRRRRRRRRRRRRRRRRRR" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "SSSSSSSSSSSSSSSSSSSSSSSSSS" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "TTTTTTTTTTTTTTTTTTTTTTTTTT" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "UUUUUUUUUUUUUUUUUUUUUUUUUU" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "VVVVVVVVVVVVVVVVVVVVVVVVVV" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "WWWWWWWWWWWWWWWWWWWWWWWWWW" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "XXXXXXXXXXXXXXXXXXXXXXXXXX" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "YYYYYYYYYYYYYYYYYYYYYYYYYY" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "ZZZZZZZZZZZZZZZZZZZZZZZZZZ" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "aaaaaaaaaaaaaaaaaaaaaaaaaa" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "bbbbbbbbbbbbbbbbbbbbbbbbbb" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "cccccccccccccccccccccccccc" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "dddddddddddddddddddddddddd" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "eeeeeeeeeeeeeeeeeeeeeeeeee" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "ffffffffffffffffffffffffff" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "gggggggggggggggggggggggggg" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "hhhhhhhhhhhhhhhhhhhhhhhhhh" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "iiiiiiiiiiiiiiiiiiiiiiiiii" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "jjjjjjjjjjjjjjjjjjjjjjjjjj" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "kkkkkkkkkkkkkkkkkkkkkkkkkk" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "llllllllllllllllllllllllll" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "mmmmmmmmmmmmmmmmmmmmmmmmmm" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "nnnnnnnnnnnnnnnnnnnnnnnnnn" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "oooooooooooooooooooooooooo" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "pppppppppppppppppppppppppp" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "qqqqqqqqqqqqqqqqqqqqqqqqqq" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "rrrrrrrrrrrrrrrrrrrrrrrrrr" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "ssssssssssssssssssssssssss" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "tttttttttttttttttttttttttt" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "uuuuuuuuuuuuuuuuuuuuuuuuuu" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "vvvvvvvvvvvvvvvvvvvvvvvvvv" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "wwwwwwwwwwwwwwwwwwwwwwwwww" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "xxxxxxxxxxxxxxxxxxxxxxxxxx" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "yyyyyyyyyyyyyyyyyyyyyyyyyy" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "zzzzzzzzzzzzzzzzzzzzzzzzzz" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "11111111111111111111111111" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "22222222222222222222222222" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "33333333333333333333333333" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "44444444444444444444444444" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "55555555555555555555555555" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "66666666666666666666666666" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "77777777777777777777777777" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "88888888888888888888888888" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "99999999999999999999999999" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "00000000000000000000000000" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "!!!!!!!!!!!!!!!!!!!!!!!!!!" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "@@@@@@@@@@@@@@@@@@@@@@@@@@" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "##########################" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "$$$$$$$$$$$$$$$$$$$$$$$$$$" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "%%%%%%%%%%%%%%%%%%%%%%%%%%" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "^^^^^^^^^^^^^^^^^^^^^^^^^^" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "&&&&&&&&&&&&&&&&&&&&&&&&&&" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "**************************" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "((((((((((((((((((((((((((" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "))))))))))))))))))))))))))" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "--------------------------" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "__________________________" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "==========================" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "++++++++++++++++++++++++++" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "\\\\\\\\\\\\\\\\\\\\\\\\\\" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "||||||||||||||||||||||||||" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "[[[[[[[[[[[[[[[[[[[[[[[[[[" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "{{{{{{{{{{{{{{{{{{{{{{{{{{" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "]]]]]]]]]]]]]]]]]]]]]]]]]]" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "}}}}}}}}}}}}}}}}}}}}}}}}}}" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string ";;;;;;;;;;;;;;;;;;;;;;;;;;" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "::::::::::::::::::::::::::" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "''''''''''''''''''''''''''" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "<<<<<<<<<<<<<<<<<<<<<<<<<<" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string ",,,,,,,,,,,,,,,,,,,,,,,,,," --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string ">>>>>>>>>>>>>>>>>>>>>>>>>>" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string ".........................." --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "//////////////////////////" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "??????????????????????????" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "~~~~~~~~~~~~~~~~~~~~~~~~~~" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "``````````````````````````" --algo bm --to 512 -j DROP
-A STRING_MATCH -m string --string "\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"" --algo bm --to 512 -j DROP

※ 마지막은 쌍따옴표인데 특수문자열을 구분해주기위해서 \ 와 같이...
왠만한건 키보드조합은 모두 올린듯....

여행스케치

웹소식

자유게시판

인기검색어

	ceph
	http
	volume
	for
	sq
	DDOS	1
	mon	1
	--	1
	date	3
	snmp	1