Detection and Defense of SYN Flood Attack Based on Winpcap

With the development and application of computer network technology, the threat of network security is getting worse. SQL inpouring attack, ARP cheat, DNS cheat and various attacks of denial service occur frequently, such as SYN flood attack. This paper presented the design of detection and defense system of SYN flood attacks on Winpcap platform. The system includes three modules, such as sniffer module, analysis module and active defense module. Simulation results show that the detection rate of system is high, it can provide reference for tracking SYN flood attack.

[1]  Wang Yong,et al.  Detection and Defense of SYN Flood Attacks Based on Dual Stack Network Firewall , 2016, 2016 IEEE First International Conference on Data Science in Cyberspace (DSC).

[2]  An Xiaoguang,et al.  Packet Capture and Protocol Analysis Based on Winpcap , 2016, 2016 International Conference on Robots & Intelligent System (ICRIS).

[3]  Chang-Soo Kim,et al.  Design of TCP SYN Flood DDoS attack detection using artificial immune systems , 2016, 2016 6th International Conference on System Engineering and Technology (ICSET).

[4]  Mohd Nazri Ismail,et al.  Detecting TCP SYN Based Flooding Attacks by Analyzing CPU and Network Resources Performance , 2014, 2014 3rd International Conference on Advanced Computer Science Applications and Technologies.