attack. PoC We demonstrate the issue with the following PoC. The idea is that we should be able to execute all 100,000 requests without being blocked - which demonstrates lack of a rate limiter. The PoC checks an attacker from sending 100,000 requests, VTAdmin would return an error or an empty response. The PoC therefore checks whether VTAdmin returns a valid hostname, and if not, then it breaks the loop and