-
Notifications
You must be signed in to change notification settings - Fork 670
Denial of Service
The Denial of Service (DoS) attack is focused on making a resource (site, application, server) unavailable for the purpose it was designed. There are many ways to make a service unavailable for legitimate users by manipulating network packets, programming, logical, or resources handling vulnerabilities, among others. If a service receives a very large number of requests, it may cease to be available to legitimate users. In the same way, a service may stop if a programming vulnerability is exploited, or the way the service handles resources it uses.
Railsgoat has a denial of service vulnerability. It is a basic example with a sleep method.
https://github.com/OWASP/railsgoat/pull/221/files#diff-eba21d978883d7d2010ed3830d9564b7L5
Sections are divided by their OWASP Top Ten label (A1-A10) and marked as R4 and R5 for Rails 4 and 5.