π‘ DoS Tool
π» Preview
Download Python 3.10 here, open the installer and click on add python to PATH
. Next, download overload
here and open CMD or PowerShell in its directory. Now you need to create a Virtual Enviroment for the application; if you have make
utility on your system just execute:
make setup
make run
If you don't have it, then execute:
curl -sSL https://install.python-poetry.org | python3
poetry install --without dev
poetry run python3 overload.py
sudo apt update
sudo apt install python3 git -y
git clone https://github.com/7zx/overload
cd overload/
make setup
make run
pkg update
pkg install python3 git -y
git clone https://github.com/7zx/overload
cd overload/
pip install -r requirements.txt
python3 overload.py
β How To Use
Once the application has been opened, choose the attack method, for how long the attack will take over (in seconds), how many threads will attack the target, the sleep time of the sockets (Slowloris only), and the target itself.
HTTP GET Attack Example:
ββββ DOS TOOL
ββββ AVAILABLE METHODS
ββββ LAYER 7: HTTP | HTTP-PROXY | SLOWLORIS | SLOWLORIS-PROXY
β ββββMETHOD: HTTP
β ββββTIME: 600
β ββββTHREADS: 800
β ββββURL: https://github.com/7zx/overload
Slowloris Attack Example:
...
β ββββMETHOD: SLOWLORIS
β ββββTIME: 300
β ββββTHREADS: 200
β ββββSLEEP TIME: 15
β ββββURL: https://github.com/7zx/overload
Overload can also perform an L4 attack (SYN-FLOOD) if you're running it on a Posix system:
...
ββββ LAYER 4: SYN-FLOOD
β ββββMETHOD: SYN-FLOOD
β ββββTIME: 40
β ββββTHREADS: 10
β ββββURL: 192.168.0.1
If the method uses proxy, then the threads will initialize and connect to elite-anonymity public proxies, and if not, your IP will be used on the requests. We do not own the proxy servers and do not respond for anything that they may do (like leaking your actual IP); they are hosted by volunteers and their addresses are retrieved through the Proxy Scrape API.
β Disclaimer
This application is intended to be used as a testing tool against your own servers. DO NOT USE IT TO ATTACK OTHER PEOPLE, we don't take responsibility for anything that may come up if you attack someone else. Also, this project makes a DoS
attack, if you want to take down well-hosted servers, then it's up to you to scale the attack using a DDoS
approach. Know the limitations of what you can do, and the defense mechanism used by your target; for instance, if a webserver uses DDoS mitigation appliances (such as load balancing), then you'll probably fail to take it down; a router that implements SYN Cookies will not be affected by a SYN-Flood attack, and so on.