Login   Register  
PHP Classes
elePHPant
Icontem

PHProtector: Analyse HTTP requests to detect security attacks

Recommend this page to a friend!
Stumble It! Stumble It! Bookmark in del.icio.us Bookmark in del.icio.us

  Author Author  
Picture of Hugo Sousa
Name: Hugo Sousa is available for providing paid consulting. Contact Hugo Sousa .
Packages: 1 Browse all classes by Hugo Sousa Browse all classes by
Country: Portugal Portugal - PHP jobs in Portugal
Age: 29
All time rank: 141519 in Portugal Portugal
Week rank: 719 Up13 in Portugal Portugal Up
Innovation award
Innovation award
Nominee: 1x


  Detailed description   Download Download .zip .tar.gz  
This package can be used to analyse HTTP requests to detect security attacks.

The main class analyzes the HTTP GET and POST values to determine if contains words that can be used to perform SQL injection attacks, mainly to MySQL applications.

It returns the information that based on a score of the word analysis it may be a security attack, so the applications avoid handling the request.

Another class can generate log files in XML format with more details about the eventual attack.

  Classes of Hugo Sousa  >  PHProtector  >  Download Download .zip .tar.gz  >  Support forum Support forum (3)  >  Blog Blog  >  RSS 1.0 feed RSS 2.0 feed Latest changes  
Name: PHProtector
Base name: phprotector
Description: Analyse HTTP requests to detect security attacks
Version: 0.3.1
PHP version: 5
License: GNU General Public License (GPL)
All time users: 1840 users
All time rank: 1970
Week users: 3 users
Week rank: 769 Up
 
  Groups   Rate classes User ratings   Applications   Files Files  

  Groups  
Group folder image HTTP HTTP protocol clients, headers and cookies View top rated classes
Group folder image PHP 5 Classes using PHP 5 specific features View top rated classes
Group folder image Logging Log generation and processing View top rated classes
Group folder image Security Security protection and attack detection View top rated classes


  Innovation Award  
PHP Programming Innovation award nominee
April 2010
Number 5

Prize: One book of choice by Apress
SQL injection security attacks consist in passing parameters to applications in such way that makes them execute database queries that may alter the application behavior in a way that can be exploited by the attacker.

This class implements one way to detect and avoid eventual SQL injection attacks by analyzing HTTP request parameters to determine if they contain sequences intended for performing this type of attacks.

Manuel Lemos

  User ratings  
RatingsUtility Consistency Documentation Examples Tests Videos Overall Rank
All time: Sufficient (65.0%) Sufficient (75.0%) Sufficient (65.0%) Sufficient (75.0%) - - Not sure (54.0%) 1318
Month: Not yet rated by the users

  Applications that use this class  
No application links were specified for this class.
Add link image If you know an application of this package, send a message to the author to add a link here.
  Files folder image Files  
File Role Description
Files folder imagephprotector (4 files)
Accessible without login HTML file index.html Data simple example of usage of the library
Accessible without login Plain text file yourpage.php Example simple example of usage of the library

  Files  /  Files folder image phprotector  
File Role Description
  Accessible without login Plain text file .log_style.xsl Data XML document transformation and presentation file for logs
  Plain text file LogAtack.php Class Class that write log files in XML
  Plain text file PhProtector.php Class Main class
  Accessible without login Plain text file README.txt Doc. Usage and documentation

Download Download all files: phprotector.tar.gz phprotector.zip
NOTICE: if you are using a download manager program like 'GetRight', please Login before trying to download this archive.