HTTP/S DELETE flood
Destructive method traffic over TLS. Validates authorization, audit pipelines, and rate limits on delete routes under encrypted load.
How it works
- Preset: HTTP/S DELETE Flood.
- Each DELETE may trigger audit logs and cascade rules after TLS decrypt.
- Use only on disposable staging resources with explicit approval.
Packet flow (illustrative)
Engarde node Target
→SYN · SYN-ACK · ACKTCP
→TLS handshake
→Application Data: METHOD /resource
→Encrypted entity body
Illustrative flow — not a live capture.
Engarde HTTP/S DELETE Flood
Focus Auth + audit path
Layer L7
What to watch in Engarde
- 401/403 ratio vs. unexpected 200 under flood.
- Audit queue backlog after decrypt tier.
Running this simulation
HTTP/S DELETE on throwaway staging IDs only; stop immediately if auth misconfiguration suspected.
Mitigation perspective
Strong method allowlists on HTTPS listeners; aggressive DELETE rate limits independent of GET.