Slowdroid

From Wikipedia, the free encyclopedia
Jump to navigation Jump to search
SlowDroid
Original author(s) Maurizio Aiello, Enrico Cambiaso
Developer(s) Enrico Cambiaso
Initial release 2013
Preview release
0.87.5
Written in Java
Operating system Android
Size 128 kb
License Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported
Website security.ge.cnr.it?q=slowdroid

SlowDroid is a denial-of-service attack which allows a single mobile device to take down a network server requiring minimal bandwidth.[1] The attack has been created for research purposes by Maurizio Aiello and developed by Enrico Cambiaso for the IEIIT Institute[2] of the National Research Council of Italy and released as an Android application.

SlowDroid behavior is similar to other Slow DoS Attacks[3] such as Slowloris, since it creates many connections with the victim in order to saturate the resources of the listening daemon application. One difference is on sent payload, which in case of SlowDroid is not compliant to a specific protocol: instead of sending a forged HTTP request, an endless sequence of spaces is sent instead. This characteristic makes SlowDroid able to target different protocols with the same payload. Another difference is on sending: during the data sending phase, instead of sending a sequence of characters as Slowloris does, SlowDroid sends a single character, hence reducing the bandwidth amounts. Finally, the main difference is on implementation: SlowDroid has been implemented to be executed on the Android mobile operating system platform.

Slowdroid was initially published on the Google Play Store. Due to developers terms of service, the application has been removed by the store and it is currently available on the researchers website.[4]

See also[edit]

References[edit]

  1. ^ Cambiaso, Enrico; Papaleo, Gianluca; Aiello, Maurizio (2014). "SlowDroid: Turning a Smartphone into a Mobile Attack Vector". International Conference on Future Internet of Things and Cloud: 405–410. doi:10.1109/FiCloud.2014.72. Retrieved 6 July 2015. 
  2. ^ "IEIIT". CNR-IEIIT. 
  3. ^ Cambiaso, Enrico; Papaleo, Gianluca; Chiola, Giovanni; Aiello, Maurizio (2013). "Slow DoS attacks: definition and categorisation". International Journal of Trust Management in Computing and Communications. 1 (3/4): 300–319. doi:10.1504/IJTMCC.2013.056440. Retrieved 6 July 2015. 
  4. ^ "SlowDroid DoS Tool". NetSec Group. Retrieved 6 July 2015.