---
type: "term"
title: "HTTP Flood"
description: "An application layer denial of service attack that overwhelms a web server with seemingly legitimate HTTP requests."
resource: "tlctc:term:http-flood"
tags:
  - "glossary"
---
# HTTP Flood

An application-layer denial of service attack that overwhelms a web server with seemingly legitimate HTTP requests. In TLCTC: maps to `#6 Flooding Attack` — the primary mechanism is volume exceeding finite capacity at the application layer. Distinguished from implementation-flaw-based DoS (which maps to `#2` or `#3` per R-FLOOD).

See also: Flooding Attack (#6), DDoS, Slowloris, SYN Flood

---