DETECTION SYN FLOOD ATTACK WITH WINPCAP DRIVER.
Dmitrii G. Bukhanov; Vladimir M. Polyakov; Dmitrii A. Uskov; Feras Daeef
Journal Title:Theoretical & Applied Science
The paper provides an overview of approaches to detect SYN flood attacks in local area networks based on the method of comparing the SYN and FIN packets, including use of neural networks. An approach is proposed to counter SYN flood attacks, based on the use of software agents. The paper describes a scheme of two types of agents. The first type performs the procedure of attack detection. The second - provides resistance to the attack. The experimental data obtained as a result of the system work are also presented.