LoDDoS (100 bots - 60 mins - up to 6000 Mbps + Operator Support)
LoDDoS is a cloud-based DDoS Testing platform offered as software as a service (SaaS) model.
It is a useful and effective DDoS testing platform for red and blue teams with various real life DDoS test types. Preparation stages that normally take a long time and require technical expertise in a manual DDoS test are carried out automatically by LoDDoS. Tests are carried out easily, DDoS mitigation systems/services, network and security devices, applications, incident detection, and response capabilities can be evaluated according to the test results.
LoDDoS consists of:
· Command Control Center – where it detects, controls, monitors and reports the attacks
· Bot Networks – where the attacks are conducted
· System Monitoring – where the target system’s health status is monitored
Barikat Cyber Security’s seasoned Testing Team with remarkable field experience, expertise and the industry’s well-known certifications as OSCP, OSWP, CEH can help your organization to identify security vulnerabilities in your exposed systems and services.
You will receive a confirmation mail, and within a day, a Zoom meeting will be arranged by our team. The invoice will be sent within 2 business days.
1 Hour
100 bots
60 mins
Up to 6000 Mbps
1 Hour
50 bots
60 mins
Up to 3000 Mbps
1 Hour
600 bots
60mins
Up to 36000 Mbps
The platform allows organizations to test/review/check the limits and efficiency of DDoS mitigation system prior to a real DDoS attack. DDoS tests can be stopped, restarted, recorded, and reported at any time. The test reports also can be stored for later review.
Additionally, customized tests as a service can be created via LoDDoS Web GUI.
With LoDDoS, organizations can easily test the limits and capabilities of information technology infrastructures, DDoS mitigation systems/services, and incident response mechanisms without being exposed to a real malicious DDoS attack but by a self-initiated controlled one.
The tests which are defined on LoDDoS, are conducted with the attendance of an Operator as well as can be initiated with a single action, monitored live, stopped in a controlled manner, repeated as often as needed. Reports can be generated automatically and promptly by the end of each test thus results can be shared with third parties.
According to Gartner’s "DDoS: A Comparison of Defense Approaches" report in 2019, LoDDoS is considered among the products that testing DDoS durability.
In 2020, Gartner mentioned LoDDoS again within its ‘Solution Comparison for DDoS Cloud Scrubbing Centers’ report.
The two of the many outstanding and appealing features of LoDDoS are:
Two Factor Security
To perform a DDoS test; both the operator (the tester) and the customer (tested) must approve the relevant test. In this way, the test is only guaranteed to the party who wants to take the test.
Emergency Stop Button
The tests being performed can be stopped by one-touch if desired. In case of unexpected situations, tests can be stopped deliberately and restarted at any time deliberately and restarted at any time.
LoDDoS Architecture
Bot Infrastructure is a group of servers that runs on a cloud service provider. Command Control Center manages all bots. The number of bots on the bot infrastructure, the geographical location of the bots, and the generated bandwidth can be all controlled via the Command Control Center based on the scope of the test. Monitoring System controls the type of monitoring to be executed by the monitoring component.
Supported DDoS Test Types
Volumetric DDoS Tests
The aim of Volumetric DDoS Tests is to consume network and system resources of target systems as well as fill the line by sending packets to saturate target system’s internet bandwith.
The supported test types are: TCP SYN Flood, TCP SYN-ACK Flood, TCP ACK-FIN Flood, TCP RST Flood, TCP PUSH ACK Flood, TCP All Flags Flood, TCP No Flags Flood, UDP Flood, UDP Fragmented Flood, ICMP Flood and SSL Negotiation Flood.
DDoS Tests in Application Layer
The aim of the DDoS tests within the Application Layer is to open valid and real connections on the targets systems, force the limits of the target systems as well as to prevent target systems from serving.
The supported test types are: HTTP GET, HTTP POST, HTTPS GET, HTTPS POST, Slowloris, DNS Query and DNS Random Query Flood.
Important Notes
· As a DDoS test provider, some precautions prior to tests must be taken to prevent abuse and misuse of the system as well as to protect all involved parties.
· LoDDoS customers must disclose the target information (e.g., FQDN, URL and IP address), the types of attacks and their bandwidth preference for an effective, safe and secure test within the Scope Form shared following the purchase of the product. This required information may vary per the type of tests.
· The customers must prove that the target information belongs to them and provide written consent before the tests are conducted.
· The minimum test duration for LoDDoS is 1 (one) hour. The 1-hour test must be used without dividing. However, if a test of more than 1 hour is purchased, this service can be split per 1-hour time slots. For example, if a customer buys a 3-hour test, the customer can use this service up to 3 times in 1-hour test batches.