I want to rent a botnet and point it at my own website + service stack so that I can better understand how they work and protect myself against it.
I’m looking for things like automated web scraping, targeted ddos, llm generated fake comments and stuff like that. Basically, I want to test my services against my stuff before I launch.
I don’t believe this is illegal as I’m targeting myself for education.
If you ask this kind of questions I recommend you to look up github and launch any ddos software you find there, if you host it at home your home router will 99% shut down if you don’t have rack router with ddos protection. If you shut down remote server router because you host in shitty provider that’s illegal. Anyways it’s stupid.
Cloud hosting providers usually have documented how you’re allowed to do penetration testing there without affecting other customers.
For example, here’s Microsoft documentation https://www.microsoft.com/en-us/msrc/pentest-rules-of-engagement
pentesting for ddos in cloud is even more stupid, if you can afford cloud you can afford ddos solutions and put your application behind one