DDoS attacks on security sites
A distributed denial of service attack disabled various security sites, including Metasploit, Packetstorm, Immunity and Milw0rm for periods of time over the weekend. The attack appears to have originated from a botnet, whose bots established TCP connections and made HTTP requests on port 80. The flood of queries was even able to follow the DNS being changed to other IP addresses. According to HD Moore, the brains behind Metasploit, the attack has now ebbed and the websites are back to full availability.
Metasploit is the tool that currently sets the standard for security tests designed to reveal specific vulnerabilities by actually exploiting them. HD Moore, its main author, has repeatedly demonstrated that he is one of the best in the business. It will be interesting to see what the reaction will be – the botnet operators may have bitten off more than they can chew on this occasion.