HTTP Bombs / Large Payload Post

An HTTP bomb, also known as Large Payload Post, is a class of HTTP DDoS attack. An ‘HTTP bomb’ uses the HTTP POST method to send large, complex POST requests, usually scripted as an XML data structure, which the target server will then attempt to parse. However, due to the size and complexity of the POST request (i.e., the “bomb”), the server will end up using high amounts of computing resources, ultimately depleting them, and bringing the server down.

This can be a particularly difficult attack to mitigate, since it can use high number of server resources with a limited number of connections. These types of DDoS attacks are also referred to as “Oversize Payload Attacks” or “Jumbo Payload Attacks.

Contact Radware Sales

Our experts will answer your questions, assess your needs, and help you understand which products are best for your business.

Already a Customer?

We’re ready to help, whether you need support, additional services, or answers to your questions about our products and solutions.

Get Answers Now from KnowledgeBase
Get Free Online Product Training
Engage with Radware Technical Support
Join the Radware Customer Program

Get Social

Connect with experts and join the conversation about Radware technologies.

Security Research Center