Show HN: DDoS detection in 0.9s, tested against a 48 Gbps attack live
11 hours ago
- #live training
- #DDoS protection
- #cybersecurity
- Lorikeet Security is a cybersecurity firm specializing in penetration testing, red team operations, compliance consulting, and live cyber training events.
- Founded in 2021 by Ryan Wilke, the company has grown from a CTF training platform to a full-spectrum offensive security and training operation.
- Lorikeet's training events include live CTF competitions and hands-on labs across various domains, with high infrastructure reliability and uptime.
- During an event on March 27, 2026, Lorikeet faced a coordinated multi-vector DDoS attack (NTP amplification and SYN flood) targeting their infrastructure.
- Flowtriq, a DDoS protection tool, was deployed and detected the attack in 0.9 seconds, enabling automated mitigation within 11 seconds.
- Mitigation included on-node iptables rules, BGP FlowSpec upstream rules, and cloud scrubbing, preventing any service disruption for 240 participants.
- The attack was fully mitigated in under 15 seconds, protecting Lorikeet from SLA breaches and reschedule costs.
- Post-event, Lorikeet standardized Flowtriq across all infrastructure, integrating it into pre-flight checks for every training session.