An Apache module for DDoS attacks mitigation. Tested against Slowloris, HTTP POST and Slowread. Keeps Apache aservervailability above XX%.
For more details and understanding of mod_seven and Application Layer DoS attacks, please check [1] and [2]:
[1] Pascoal, T. A., Correa, J. H. G., Nigam, V., Fonseca, I. E., 2017. “An Anti-Application Layer DoS Attack Module: A Quality of Service and User Experience Analysis”. In XXXV Brazilian Symposium on Computer Networks, pp. 1003-1016. SBC, 2017. In portuguese.
[2] Pascoal, T. A., Correa, J. H. G., Nigam, V., Fonseca, I. E., 2016. “A module for defending application layer DDoS attacks using selective strategies”. In XXXIV Brazilian Symposium on Telecommunications and Signal Processing, pp. 969-973. SBC, 2016. In portuguese.
Installation:
- First, install apache dev:
- Second, install and activates mod_seven module:
- Finally, restart Apache service:
- mod_seven - Manual: mod_seven Manual in Portuguese;
- scenario_experiments: One of the many used scenario for experiments;
- apache.sh: shell script for monitoring Apache´s CPU and memory consumption;
- exec-sleep.sh: sheel script model for DoS attack;
- exec-sleep_slowloris: sheel script for Slowloris DoS attack;
- exec-sleep_slowbodies: sheel script for Slowbodies/HTTP POST DoS attack;
- exec-sleep_slowread: sheel script for Slowread DoS attack;
- ressurected_slowloris: sheel script for a novel DoS attack called ressurected slowloris;