Login   Register  
PHP Classes
elePHPant
Icontem

Class: PHProtector

  Classes of Hugo Sousa  >  PHProtector  >  Download  >  Support forum Support forum (3)  >  Blog Blog  >  RSS 1.0 feed RSS 2.0 feed Latest changes  
Name: PHProtector Support forum
Base name: phprotector
Description: Analyse HTTP requests to detect security attacks
Version: 0.3.1
Required PHP version: 5
License: GNU General Public License (GPL)
 
  Author   Group folder image Groups   Detailed description  
  Applications   Files Files  

Author

Picture of Hugo Sousa
Name: Hugo Sousa <e-mail contact>
Published packages: 1 Browse this author's classes Browse this author's classes
Country: Portugal Portugal - PHP jobs in Portugal
Home page: ???

Innovation Award

PHP Programming Innovation award nominee
April 2010
Number 5
 SQL injection security attacks consist in passing parameters to applications in such way that makes them execute database queries that may alter the application behavior in a way that can be exploited by the attacker.

This class implements one way to detect and avoid eventual SQL injection attacks by analyzing HTTP request parameters to determine if they contain sequences intended for performing this type of attacks.

Manuel Lemos

Groups

Group folder image HTTP HTTP protocol clients, headers and cookies View top rated classes
Group folder image PHP 5 Classes using PHP 5 specific features View top rated classes
Group folder image Logging Log generation and processing View top rated classes
Group folder image Security Security protection and attack detection View top rated classes

Detailed description

This package can be used to analyse HTTP requests to detect security attacks.

The main class analyzes the HTTP GET and POST values to determine if contains words that can be used to perform SQL injection attacks, mainly to MySQL applications.

It returns the information that based on a score of the word analysis it may be a security attack, so the applications avoid handling the request.

Another class can generate log files in XML format with more details about the eventual attack.

Applications that use this class

No application links were specified for this class.
Add link image If you know an application of this package, send a message to the author to add a link here.

Files

File Role Description
HTML file index.html Data simple example of usage of the library
Files folder image phprotector
  Plain text file .log_style.xsl Data XML document transformation and presentation file for logs
  Plain text file LogAtack.php Class Class that write log files in XML
  Plain text file PhProtector.php Class Main class
  Plain text file README.txt Doc. Usage and documentation
Plain text file yourpage.php Example simple example of usage of the library
Download all files: phprotector.tar.gz phprotector.zip
NOTICE: if you are using a download manager program like 'GetRight', please Login before trying to download this archive.