Interesting new technique for DDOS attack
Found this new technique for DDOS attack for one of our SOC customers.
Some of the use cases that we are using to combat these are:
2. Any HTTP request with useragent: loadrunner,io
3. Detecting a 10x spike in HTTP requests for the Internet facing sites , using an active list
Have you faced these attacks? Any other suggestions to prevent these type of attacks?
What use cases have you implement to detect DDOS in general?