28C3 - Version 2.3.5
28th Chaos Communication Congress
Behind Enemy Lines
| Speakers | |
|---|---|
|
Alexander ‘alech’ Klink |
|
Julian | zeri |
| Schedule | |
|---|---|
| Day | Day 2 - 2011-12-28 |
| Room | Saal 1 |
| Start time | 14:00 |
| Duration | 01:00 |
| Info | |
| ID | 4680 |
| Event type | Lecture |
| Track | Hacking |
| Language used for presentation | English |
| Feedback | |
|---|---|
|
Did you attend this event? Give Feedback |
Effective Denial of Service attacks against web application platforms
We are the 99% (CPU usage)
This talk will show how a common flaw in the implementation of most of the popular web programming languages and platforms (including PHP, ASP.NET, Java, etc.) can be (ab)used to force web application servers to use 99% of CPU for several minutes to hours for a single HTTP request.
This attack is mostly independent of the underlying web application and just relies on a common fact of how web application servers typically work.