Radmin is a system for automatic early detection of application-level DoS attacks. Radmin actively monitors the resource consumption of target programs, and uses a timed probabilistic finite automata (PFA) model to detect, early in time, if the program is consuming resources out of the norm. It is also capable of detecting if the program is starving or stalling (e.g., due to livelocks).
Fore more details, please refer to: "Radmin: Early Detection of Application-Level Resource Exhaustion and Starvation Attacks," in proceedings of the 18th International Conference on Research in Attacks, Intrusions and Defenses (RAID), 2015, Kyoto Japan.
Due to licensing restrictions and commercial interest, the source code of Radmin is no longer public. Please contact the author(s) for more information.
@inproceedings{elsabagh:15:raid,
author = {Elsabagh, Mohamed and Barbar{\'a}, Daniel and Fleck, Dan and Stavrou, Angelos},
title = {Radmin: Early Detection of Application-Level Resource Exhaustion and Starvation Attacks},
booktitle = {Proceedings of the 18th International Conference on Research in Attacks, Intrusions and Defenses ({RAID})},
volume = {9404},
pages = {515--537},
series = {Lecture Notes in Computer Science},
publisher = {Springer},
isbn = {978-3-319-26361-8},
doi = {10.1007/978-3-319-26362-5_24},
venue = {Kyoto, Japan},
month = nov,
year = 2015,
}