A simple intrusion detection/prevention system framework for PHP apps.
A simple intrusion detection/prevention system framework written in PHP.
Defence is used principally to (1) prevent a suspicious-looking request getting deeper into an application's code, and potentially exploiting vulnerabilities, and (2) avoid wasting further system resources on unfriendly user activity.
‼️ Defence does not eliminate the need to filter user-input in your application. While some of the included filters do indeed validate user input, they take a very high-level view. Their aim is to detect obviously suspect values given a very basic understanding of what they're looking at. For example, the included ID-parameter filter knows only that certain parameters must contain only digits or a blank; the filter is useful because it can quickly and easily prevent SQL injection, but the value may still be invalid as far as your app is concerned.