macOS
brew install slowhttptestlocal Homebrew formula metadata
sudo port install slowhttptestMacPorts ports tree · www/slowhttptest/Portfile · source: api.github.com
brew
Simulates application layer denial of service attacks. Version 1.9.0 via Homebrew; verified 2026-05-12.
install
brew install slowhttptestlocal Homebrew formula metadata
sudo port install slowhttptestMacPorts ports tree · www/slowhttptest/Portfile · source: api.github.com
sudo apt install slowhttptestDebian stable package indexes · slowhttptest · source: deb.debian.org
nix profile install nixpkgs#slowhttptestnixpkgs package indexes · pkgs/by-name/sl/slowhttptest/package.nix · source: api.github.com
sudo pacman -S slowhttptestArch Linux sync databases · slowhttptest · source: geo.mirror.pkgbuild.com
overview
Simulates application layer denial of service attacks
history
SlowHTTPTest is a command-line security testing tool that simulates application-layer denial-of-service attacks by prolonging HTTP connections in several ways. Its README frames it as a configurable way to test web servers for DoS vulnerability or connection-handling limits.
The official GitHub wiki says the project moved from Google Code. The wiki timeline records the first version on 2011-08-24, version 1.1 for Apache Range header testing on 2011-08-27, version 1.3 with Slow Read support on 2011-12-28, version 1.4 with `poll()` support on 2012-01-28, and version 1.6 on 2013-11-25.
The GitHub release list preserves that migration history: v1.6 is named as from the Google Code period, v1.7 as the first post-Google Code release, and later releases include v1.8 in 2019, v1.8.2 in 2020, and v1.9.0 in 2022.
SlowHTTPTest became a standard small-package security tool because it wraps slowloris, Slow HTTP POST, Slow Read, and Apache Range-style tests into one CLI. The input facts list it in Homebrew, Debian, Ubuntu, MacPorts, Nix, and pacman-family systems.
Homebrew's formula API reported 277 installs-on-request over 365 days for the batch's lookup window, matching a specialist tool that is installed when a user needs to test a web server rather than kept as a daily shell utility.
The official README describes testing web servers for DoS vulnerabilities or determining how many concurrent connections they can handle. It says the tool works on many Linux platforms, OS X, and Cygwin, and points to the wiki for installation and usage details.
The wiki explains that the tool sends partial HTTP requests or reads responses slowly to exercise server resource handling. Its usage should be limited to systems the user is authorized to test.
SlowHTTPTest is package-nerd significant because it keeps a historically important class of HTTP DoS tests available as a reproducible CLI package instead of scattered proof-of-concept scripts.
It also shows how security tooling often survives package-manager adoption after project hosting moves: Google Code history, GitHub releases, distro packages, and Homebrew all preserve the same operational utility.
security posture
No matching local secret-handling manifest was found for slowhttptest. Nucleus package metadata is still published here so future coverage has a stable package URL.
Before unattended agent use, check whether the tool reads plaintext credentials, writes remote state, publishes artifacts, or shells out to plugins.
executables
| Command | Kind | Exposure | Note |
|---|---|---|---|
slowhttptest | cli | global executable |
freshness
These signals separate page generation age, package-manager activity, and upstream release comparison. Version lag is warned only when an evidence URL and comparable versions are present.
https://github.com/shekyan/slowhttptest
install metadata
| Package key | brew:slowhttptest |
|---|---|
| Version | 1.9.0 |
| Package manager | Homebrew |
| Package manager page | https://formulae.brew.sh/formula/slowhttptest |
| Homepage | https://github.com/shekyan/slowhttptest |
| Repository | https://github.com/shekyan/slowhttptest |
| Upstream docs | https://github.com/shekyan/slowhttptest#readme |
| License | Apache-2.0 |
| Source archive | https://github.com/shekyan/slowhttptest/archive/refs/tags/v1.9.0.tar.gz |
| Last updated | 2026-05-12T21:46:12Z |
| Pulse | updated |
| Dependencies | openssl@4 |
| Bottle | available (on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux) |
| Homebrew post-install | not defined |
| Service | none declared |
registry facts
| Source Database | Homebrew formula API |
|---|---|
| Tap | homebrew/core |
| Full Name | slowhttptest |
| Version Scheme | 0 |
| Revision | 0 |
| Head Version | HEAD |
| Bottle Stable Root URL | https://ghcr.io/v2/homebrew/core |
| Deprecated | no |
| Disabled | no |
| Keg Only | no |
| URL Keys |
|
source database matches
Matches are pulled from external package-manager indexes and kept separate from local Automic Vault package links.
slowhttptest 1.9.0-1+b1
application layer Denial of Service attacks simulation tool
https://github.com/shekyan/slowhttptest
sudo apt install slowhttptestslowhttptest
nix profile install nixpkgs#slowhttptestslowhttptest 1.9.0-1build2
application layer Denial of Service attacks simulation tool
https://github.com/shekyan/slowhttptest
sudo apt install slowhttptestslowhttptest 1.9.0-2
Highly configurable tool that simulates some Application Layer Denial of Service (DoS) attacks
https://github.com/shekyan/slowhttptest
sudo pacman -S slowhttptestslowhttptest
sudo port install slowhttptestsource trail
This page is generated by av-web from the private package SQLite artifact built by scripts/generate-pkg-sqlite.py.
View the package source record on GitHub.