Login   Register  
PHP Classes
elePHPant
Icontem

PHProtector

Recommend this page to a friend!
Stumble It! Stumble It! Bookmark in del.icio.us Bookmark in del.icio.us
  Classes of Hugo Sousa  >  PHProtector  >  Download .tar.gz .zip  >  Support forum Support forum (3)  >  Blog Blog  >  RSS 1.0 feed RSS 2.0 feed Latest changes  
Name: PHProtector
Support forum Support forum
Base name: phprotector
Description: Analyse HTTP requests to detect security attacks
Related classes: , , , , , , ,
Version: 0.3.1
PHP version: 5
License: GNU General Public License (GPL)
All time users: 1538 users
All time rank: 2141
Week users: 7 users
Week rank: 470
 

  Author  
Picture of Hugo Sousa
Name: Hugo Sousa is available for providing paid consulting. Contact Hugo Sousa .
Packages: 1 Browse all classes by Hugo Sousa Browse all classes by
Country: Portugal Portugal - PHP jobs in Portugal
Age: 27
All time rank: 145718 in Portugal Portugal
Week rank: 509 Up8 in Portugal Portugal Up
Innovation award
Innovation award
Nominee: 1x


  Detailed description  
This package can be used to analyse HTTP requests to detect security attacks.

The main class analyzes the HTTP GET and POST values to determine if contains words that can be used to perform SQL injection attacks, mainly to MySQL applications.

It returns the information that based on a score of the word analysis it may be a security attack, so the applications avoid handling the request.

Another class can generate log files in XML format with more details about the eventual attack.

  Groups   Rate classes User ratings   Applications   Files Files  

  Groups  
Group folder image HTTP HTTP protocol clients, headers and cookies View top rated classes
Group folder image PHP 5 Classes using PHP 5 specific features View top rated classes
Group folder image Logging Log generation and processing View top rated classes
Group folder image Security Security protection and attack detection View top rated classes


  Innovation Award  
PHP Programming Innovation award nominee
April 2010
Number 5

Prize: One book of choice by Apress
 SQL injection security attacks consist in passing parameters to applications in such way that makes them execute database queries that may alter the application behavior in a way that can be exploited by the attacker.

This class implements one way to detect and avoid eventual SQL injection attacks by analyzing HTTP request parameters to determine if they contain sequences intended for performing this type of attacks.

Manuel Lemos

  User ratings  
Ratings
Utility
Consistency
Documentation
Examples
Tests
Videos
Overall
Rank
All time:
Sufficient (65.0%)
Sufficient (75.0%)
Sufficient (65.0%)
Sufficient (75.0%)
-
-
Not sure (54.0%)
1239
Month:
Not yet rated by the users

  Applications that use this class  
No application links were specified for this class.
Add link image If you know an application of this package, send a message to the author to add a link here.
  Files folder image Files  
File Role Description
Files folder imagephprotector (4 files)
HTML file index.html Data simple example of usage of the library
Plain text file yourpage.php Example simple example of usage of the library

  Files  /  Files folder image phprotector  
File Role Description
  Plain text file .log_style.xsl Data XML document transformation and presentation file for logs
  Plain text file LogAtack.php Class Class that write log files in XML
  Plain text file PhProtector.php Class Main class
  Plain text file README.txt Doc. Usage and documentation

Download all files: phprotector.tar.gz phprotector.zip
NOTICE: if you are using a download manager program like 'GetRight', please Login before trying to download this archive.