ExamTopics Logo
Mail Us[email protected]
Menu
Eccouncil Discussions
exam questions

Exam 312-50v11 All Questions

View all questions & answers for the 312-50v11 exam
Go to Exam

Exam 312-50v11 topic 1 question 187 discussion

Actual exam question from ECCouncil's 312-50v11
Question #: 187
Topic #: 1
[All 312-50v11 Questions]

A DDoS attack is performed at layer 7 to take down web infrastructure. Partial HTTP requests are sent to the web infrastructure or applications. Upon receiving a partial request, the target servers opens multiple connections and keeps waiting for the requests to complete.
Which attack is being described here?

  • A. Desynchronization
  • B. Slowloris attack
  • C. Session splicing
  • D. Phlashing
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by Qutie at April 14, 2021, 2:27 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
blacksheep6r
Highly Voted 1 year, 6 months ago
Slowloris Attack Slowloris is a DDoS attack tool used to perform layer-7 DDoS attacks to take down web infrastructure. It is distinctly different from other tools in that it uses perfectly legitimate HTTP traffic to take down a target server. In Slowloris attacks, the attacker sends partial HTTP requests to the target web server or application. Upon receiving the partial requests, the target server opens multiple connections and waits for the requests to complete. However, these requests remain incomplete, causing the target server’s maximum concurrent connection pool to be filled up and additional connection attempts to be denied. CEHv11 page 1322
upvoted 17 times
...
Daniel8660
Most Recent 6 months, 1 week ago
Selected Answer: B
DoS/DDoS Attack Vectors - Application Layer Attacks Slowloris attack In the Slowloris attack, the attacker sends partial HTTP requests to the target web server or application.Upon receiving the partial HTTP requests, the target server opens multiple open connections and keeps waiting for the requests to complete.These requests will not be complete, and as a result, the target server’s maximum concurrent connection pool will be exhausted, and additional connection attempts will be denied. (P.1320/1304)
upvoted 3 times
...
artillery
11 months, 4 weeks ago
Selected Answer: B
Slowloris is an application layer DDoS attack which uses partial HTTP requests to open connections between a single computer and a targeted Web server, then keeping those connections open for as long as possible, thus overwhelming and slowing down the target. This type of DDoS attack requires minimal bandwidth to launch and only impacts the target web server, leaving other services and ports unaffected. Slowloris DDoS attacks can target many type of Web server software, but has proven highly-effective against Apache 1.x and 2.x. https://www.netscout.com/what-is-ddos/slowloris-attack
upvoted 3 times
...
ANDRESCB1988
1 year, 9 months ago
correct
upvoted 2 times
...
cerzocuspi
2 years ago
Answer is Slowloris attack The following are examples for application layer attack techniques: *Hypertext Transfer Protocol (HTTP) flood attack *Slowloris attack *UDP application layer flood attack
upvoted 4 times
...
Qutie
2 years ago
Slowloris is an application layer DDoS attack which uses partial HTTP requests to open connections between a single computer and a targeted Web server, then keeping those connections open for as long as possible, thus overwhelming and slowing down the target. https://www.netscout.com/what-is-ddos/slowloris-attacks
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago