Description
drool can replay DNS traffic from packet capture (PCAP) files and send it to a specified server, with options such as to manipulate the timing between packets, as well as loop packets infinitely or for a set number of iterations. This tool's goal is to be able to produce a high amount of UDP packets per second and TCP sessions per second on common hardware.
The purpose can be to simulate Distributed Denial of Service (DDoS) attacks on the DNS and measure normal DNS querying. For example, the tool could enable you to take a snapshot of a DDoS and be able to replay it later to test if new code or hardening techniques are useful, safe & effective. Another example is to be able to replay a packet stream for a bug that is sequence- and/or timing-related in order to validate the efficacy of subsequent bug fixes.
Following repositories are included:
Installation Instructions
#> dnf copr enable @dnsoarc/dnsjit
#> dnf copr enable @dnsoarc/drool
#> dnf install drool
Active Releases
The following unofficial repositories are provided as-is by owner of this project. Contact the owner directly for bugs or issues (IE: not bugzilla).
Release | Architectures | Repo Download |
---|---|---|
EPEL 8 | aarch64 (10)*, x86_64 (161)* | EPEL 8 (79 downloads) |
EPEL 9 | aarch64 (12)*, x86_64 (17)* | EPEL 9 (72 downloads) |
Fedora 39 | aarch64 (12)*, x86_64 (18)* | Fedora 39 (31 downloads) |
Fedora 40 | aarch64 (9)*, x86_64 (10)* | Fedora 40 (32 downloads) |
Fedora 41 | aarch64 (0)*, x86_64 (0)* | Fedora 41 (7 downloads) |
Fedora rawhide | aarch64 (9)*, x86_64 (24)* | Fedora rawhide (77 downloads) |
* Total number of downloaded packages.
External Repository List
The following repositories are accessible during builds