Zeitpunkt Nutzer Delta Tröts TNR Titel Version maxTL Sa 03.08.2024 00:00:13 52.227 +51 2.253.058 43,1 Vivaldi Social 4.2.10 1.337 Fr 02.08.2024 00:01:10 52.176 +46 2.248.590 43,1 Vivaldi Social 4.2.10 1.337 Do 01.08.2024 00:00:51 52.130 +42 2.244.590 43,1 Vivaldi Social 4.2.10 1.337 Mi 31.07.2024 00:00:20 52.088 +39 2.240.554 43,0 Vivaldi Social 4.2.10 1.337 Di 30.07.2024 00:00:02 52.049 +40 2.237.534 43,0 Vivaldi Social 4.2.10 1.337 Mo 29.07.2024 00:00:19 52.009 +38 2.234.567 43,0 Vivaldi Social 4.2.10 1.337 So 28.07.2024 00:00:25 51.971 +44 2.231.579 42,9 Vivaldi Social 4.2.10 1.337 Sa 27.07.2024 00:00:08 51.927 +47 2.228.252 42,9 Vivaldi Social 4.2.10 1.337 Fr 26.07.2024 00:00:02 51.880 +46 2.224.342 42,9 Vivaldi Social 4.2.10 1.337 Do 25.07.2024 00:00:05 51.834 0 2.220.915 42,8 Vivaldi Social 4.2.10 1.337
graste (@graste) · 11/2022 · Tröts: 490 · Folger: 236
Sa 03.08.2024 21:22
"Beyond the Limit: Expanding single-packet race condition with a first sequence sync for breaking the 65,535 byte limit"
https://flatt.tech/research/posts/beyond-the-limit-expanding-single-packet-race-condition-with-first-sequence-sync/
Sending 10000 requests in 166ms by abusing IP fragmentation and TCP sequence numbers together with http2 simultaneous streams while sending the last byte of every request last is one thing ... using thousands of parallel requests to bypass the rate limiting of servers is a whole other story.
"once the server receives all the packets sent above, the client sends the TCP packet with the first sequence number, and the server processes all the requests simultaneously"
[Öffentlich] Antw.: 0 Wtrl.: 0 Fav.: 0 · via Mastodon for Android