http-slowloris-check and http-slowloris don't work

[jmvezic]

When I use http-slowloris-check and http-slowloris they never work. With http-slowloris-check the site always clears and with http-slowloris it never goes down. I can successfully bring it down with slowhttptest installed via apt-get within ten seconds, though (default parameter is slowloris).

[cldrn]

Hey,

Are you increasing the --max-parallelism value when running http-slowloris?

[jmvezic]

No, using the default settings for everything. Should I try that?

[jmvezic]

This is the output I get when running http-slowloris-check, domain and IP address redacted:

NSE: Script Pre-scanning.
NSE: Starting runlevel 1 (of 1) scan.
Initiating NSE at 22:28
Completed NSE at 22:28, 0.00s elapsed
Initiating Ping Scan at 22:28
Scanning ------- (-------) [4 ports]
Completed Ping Scan at 22:28, 0.21s elapsed (1 total hosts)
Initiating Parallel DNS resolution of 1 host. at 22:28
Completed Parallel DNS resolution of 1 host. at 22:28, 0.04s elapsed
Initiating SYN Stealth Scan at 22:28
Scanning ------- (-------) [1 port]
Discovered open port 443/tcp on -------
Completed SYN Stealth Scan at 22:28, 0.20s elapsed (1 total ports)
NSE: Script scanning -------.
NSE: Starting runlevel 1 (of 1) scan.
Initiating NSE at 22:28
Completed NSE at 22:28, 21.48s elapsed
Nmap scan report for ------- (-------)
Host is up, received echo-reply ttl 50 (0.026s latency).
rDNS record for -------: -------
Scanned at 2018-06-26 22:28:22 CEST for 22s
PORT    STATE SERVICE REASON
443/tcp open  https   syn-ack ttl 50

NSE: Script Post-scanning.
NSE: Starting runlevel 1 (of 1) scan.
Initiating NSE at 22:28
Completed NSE at 22:28, 0.00s elapsed
Read data files from: /usr/bin/../share/nmap
Nmap done: 1 IP address (1 host up) scanned in 22.95 seconds
       Raw packets sent: 6 (240B) | Rcvd: 3 (116B)

The site is vulnerable to default slowhttptest program, however.