all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

This DDoS Attack... (HTTP/2 Rapid Reset)

Add to bookmarks
Nov. 15, 2023, 2 p.m. | Grant Collins

Grant Collins www.youtube.com

398 Million Requests Per Second. 155 Million Requests Per Second. 201 Millions Requests Per Second. Dem packets be flyin'. In this video, I explore and demo CVE-2023-44487, the novel HTTP/2 Rapid Reset Attack zero-day. A feature rather than an inherent bug.

⏰ Timestamps:
0:00 - Introduction
0:41 - Background Information
1:38 - HTTP/2 vs HTTP/1.1
4:27 - Demo (DDoS Apache2 Web Server)
10:11 - Mitigations
11:17 - Conclusion

🔗 Links Mentioned:
- Rapid Reset Client (PoC): https://github.com/secengjeff/rapidresetclient
- New 'HTTP/2 …

2 rapid reset attack bug cve cve-2023-44487 ddos ddos attack demo feature http information introduction novel packets rapid rapid reset rapid reset attack requests reset timestamps video zero-day

Visit resource

More from www.youtube.com / Grant Collins

Cybersecurity Careers Are Experiencing a Fundamental Shift Right Now. 1 week, 1 day ago | www.youtube.com
budgets career careers challenges +17
QR Code Hacking - I Placed 'Malicious' QR Codes Around My Local Area - Here's … 3 weeks, 3 days ago | www.youtube.com
area caught code com +13
How to Email Spoof 101. (and also how to prevent) 1 month, 1 week ago | www.youtube.com
amp dkim dmarc easydmarc +13
Cybersecurity Does Not Have a Skill Shortage Gap (It's a Hiring Gap) 1 month, 3 weeks ago | www.youtube.com
can cybersecurity entry fix +11
It's Time to Reconsider Anti-Virus (is it necessary?) 2 months, 1 week ago | www.youtube.com
avast customer customer data data +10
Analyzing The Prolific Open-Source AsyncRAT Malware 3 months ago | www.youtube.com
amp analysis any.run asyncrat +19
a (recent) lesson learned in cybersecurity (fixation) 3 months, 1 week ago | www.youtube.com
build comments cybersecurity email +10
Crafting 3 Common Cyber Attacks (and how to easily analyze) 3 months, 2 weeks ago | www.youtube.com
attachments build comments credentials +16
Get Started in Cybersecurity 2024 (A Guide) 4 months ago | www.youtube.com
amp basics cybersecurity cybersecurity 2024 +13

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote
View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC
View on infosec-jobs.com