Smurf Attack
Definition
A Smurf attack is a type of distributed denial-of-service (DDoS) attack where an attacker uses spoofed ICMP packets to flood a target system with traffic, overwhelming it and making it unavailable.
Examples
- An attacker spoofs the victim’s IP address in ICMP Echo Requests and sends them to a network broadcast address, causing all hosts to reply to the victim.
- A misconfigured network allows ICMP requests to be amplified and redirected to a target server, knocking it offline.
Overview
A Smurf attack is a classic example of a distributed denial-of-service (DDoS) attack that uses Internet Control Message Protocol (ICMP) traffic to overwhelm a target with massive amounts of network replies. It exploits the broadcast functionality of IP networks and relies on IP spoofing to redirect traffic back to an unsuspecting victim.
The goal is to flood the target system or network with more data than it can handle, resulting in service disruption, degraded performance, or a complete crash. While Smurf attacks are less common today due to improved network configurations and awareness, they represent an important part of network security history and still serve as the foundation for similar amplification-based attacks.
Tip: The interactive version includes progress tracking, decks, and premium deep dives.