Certified Ethical Hacker (CEH v10) — Question 147

Which of the following DoS tools is used to attack target web applications by starvation of available sessions on the web server? The tool keeps sessions at halt using never-ending POST transmissions and sending an arbitrarily large content-length header value.

Answer options

• A. Stacheldraht
• B. LOIC
• C. R-U-Dead-Yet? (RUDY)
• D. MyDoom

Correct answer: C

Explanation

The correct answer is C, R-U-Dead-Yet? (RUDY), as it specifically focuses on creating session exhaustion through prolonged POST requests. A, Stacheldraht, is a tool for DDoS attacks but does not specifically target web application session management. B, LOIC, is a network stress testing tool that does not utilize the same method of session starvation, and D, MyDoom, is a worm primarily focused on spreading and not specifically designed for web session attacks.