Strona główna Odkrywaj Pomoc
Zaloguj się
bat9go
/
Ycsecurity
kopia lustrzana https://github.com/yandex-cloud/yc-solution-library-for-security
Obserwuj 1
Polub 0
Forkuj 0
Pliki Problemy 0 Wiki
Gałąź: add-opensearch-solution
Gałęzie Tagi
Ycsecurity
/
vuln-mgmt
/
anti-ddos-lt
Mirtov Alexey efa5c5dcf0 add load testing dos eng 2 lat temu
..
README.md efa5c5dcf0 add load testing dos eng 2 lat temu
README_RU.md db1adcde8b Update README_RU.md 2 lat temu

README.md

Testing AntiDDos system using Yandex Load Testing

The solution allows you to test your AntiDDos system with Yandex Load Testing

!!Important!!: Use this tool only to test your own infrastructure. Using a tool to load resources that are not yours may be a violation of the legislation of the Russian Federation and lead to negative consequences

1) Prepare a test VM/service. For example, using the solution Installing a Vulnerable Web Application (dvwa) or any other web service

2) Enable L7 DDos/Dos protection in Yandex Cloud using the service "Yandex DDoS Protection: Extended protection" or enable protection from an external provider

(Extended protection works at levels 3 and 7 of the OSI model. In addition, you can track load indicators, attack parameters and connect Solidwall WAF in your Qrator Labs personal account. To enable advanced protection, contact your manager or technical support). Additionally, you can activate the WAF service (Web Application Firewall)

3) Ask your manager/architect/support to access the service Yandex Load Testing

4) Perform the initial setup of the service, agent according to the instructions How to get started with Yandex Load Testing.

The agent configuration is selected based on the desired load of requests per second (rps) All available configurations presented here (10,000rps - small, 20,000 - medium 40,000 - large)

5) In the service menu, click Create test and select Setting method - Config

6) Insert the following configuration (load at 4000 rps):

phantom:
  enabled: true
  package: yandextank.plugins.Phantom
  address: your-test-app:80
  ammo_type: uri
  load_profile:
    load_type: rps
    schedule: step(75, 4000, 25, 2m)
  ssl: false
  uris:
    - /
core: {}
cloudloader:
  enabled: true
  package: yandextank.plugins.CloudUploader
  job_name: omgplease.tk
  job_dsc: ''
  ver: '1'
  api_address: loadtesting.api.cloud.yandex.net:443

!Need to change port 80 to 443 if using https

Screen Shot 2022-03-30 at 11 22 21

7) Click Create

8) As a result, a load test will start, the report of which can be viewed by failing into the test and selecting the Report button

Screen Shot 2022-03-30 at 11 24 52

9) You will see an attack alert like HTTP Misuse/Flood on the target DDos protection system. HTTP attack. It is aimed at overloading the HTTP service with a large number of requests.