CAPEC 482 TCP Flood

Name: VulnX Platform
Author: Studio Consi

Draft Standard Unknown Risk

Description

An adversary may execute a flooding attack using the TCP protocol with the intent to deny legitimate users access to a service. These attacks exploit the weakness within the TCP protocol where there is some state information for the connection the server needs to maintain. This often involves the use of TCP SYN messages.

CAPEC 482 TCP Flood

Description

Mitigations

To Mitigate This Type Of An Attack, An Organization Can Monitor Incoming Packets And Look For Patterns In The Tcp Traffic To Determine If The Network Is Under An Attack. The Potential Target May Implement A Rate Limit On Tcp Syn Messages Which Would Provide Limited Capabilities While Under Attack.

Consequences

Consequence Information

Relationships

Parent CAPECs

Related ATT&CK Techniques

Direct Network Flood

OS Exhaustion Flood

Service Exhaustion Flood

CAPEC 482 TCP Flood

Description

Mitigations

To Mitigate This Type Of An Attack, An Organization Can Monitor Incoming Packets And Look For Patterns In The Tcp Traffic To Determine If The Network Is Under An Attack. The Potential Target May Implement A Rate Limit On Tcp Syn Messages Which Would Provide Limited Capabilities While Under Attack.

Consequences

Consequence Information

Relationships

Parent CAPECs

Related ATT&CK Techniques

Direct Network Flood

OS Exhaustion Flood

Service Exhaustion Flood

Iscriviti alla newsletter