com-logonet-logo
Security Services

HTTP Flood Attack

An HTTP flood is a layer 7 attack that targets web applications and servers. During this attack, an attacker exploits the HTTP GET or POST requests sent when an HTTP client, like a web browser, “talks” to an application or server.

The attacker employs a botnet to send the victim’s server a large volume of GET (images or scripts) or POST (file or forms) requests with the intent of overwhelming its capabilities. The victim’s web server becomes inundated attempting to answer each request from the botnet, which forces it to allocate the maximum resources to handle the traffic. This prevents legitimate requests from reaching the server, causing a denial of service.

HTTP GET Attack

Http get attack

HTTP POST Attack

Http get attack

Learn more about how Verisign mitigates these types of DDoS attacks