A researcher has posted his experience keeping their onion up during a massive DDoS back in February. he has taken 4 steps to defend. Some of them require source code patches for the Tor daemon and rolling it out to the network - this is obviously out of scope, but a couple of them are simple and more realistic alternatives to defaults that Tor ships with.