Explore strategies for defending against Application-Level Denial of Service (DoS) attacks in this 42-minute OWASP Foundation conference talk. Learn about the challenges of protecting modern websites with diverse components from simple yet potentially devastating DoS attacks. Discover how combining historical and real-time data on website access can enable active defense strategies. Examine a new open-source project, primarily written in Node.js, designed as a defense framework for mitigating these attacks. Gain insights into topics such as slow read attacks, identification techniques, real-world examples, architecture considerations, message formats, and performance testing. Understand the potential future applications of this framework and its relevance beyond DoS protection.