PHP Security System
Free and open source PHP Security Systems Scripts. Kepp your site server security in every respect such as XSS, SQL injuection, spam and so on.-
1689 total visitsCrypter is capable of decrypting the data back to its original form. -
1650 total visitsTime-based tokens are generated and can be used in hidden form fields.The presence of the token in the submitted form values can be verified and an eventual attack can be avoided by not processing the form if the token is not present or is not valid.Requirements: PHP 5.0 or higher
-
2029 total visitsA log file containing the IP addresses and whether they could be proxies, gets generated. Rex can also check if an array of POST or GET values contains HTML excerpts with Javascript that could be used to perform XSS (Cross-site scripting) attacks.Requirements: PHP 5.0 or higherWhat's New in This Release Rex:- Proxy port scan can be disabled (in some cases, ...
-
1730 total visitsA form parameter with a random hash is used in both the form and the processing pages. No Spam class can be used in links and forms.The links or forms that process the hashed parameters can verify the hash and only allow to proceed if the hash of the current date matches the followed URL hash parameter. This may help ...
-
1468 total visitsForm Data Cleaner can be used to sanitise GET and POST values based on expected data type rules. It takes a list of GET and POST request parameters that it should analyse and the respective data types that it expects. Currently Form Data Cleaner supports the types: integer, double, string, boolean and array.String values may be escaped for use in ...
-
2044 total visitsSpambot Trap Deluxe can be used to generate pages with e-mail links pointing to spam trap e-mail addresses. It can be used with mod_rewrite conditions to redirect unwanted crawling bots to a different spam trap domain.In the spam trap domain Spambot Trap Deluxe can be used to serve pages with bogus e-mail addresses either in the form of mailto: links ...
-
1816 total visitsAnti-Spam protects e-mail addresses in Web pages from being harvested usually by spammers that use programs to crawl and scan Web sites.
-
1820 total visitsSubmit Security can check whether the referrer URL is a of a site from a trusted sites list. It can also check whether the access method is POST or GET, according what is expected.If any of the access checks fail, an error message will be displayed.Requirements: PHP 5.0 or higher
-
1719 total visitssecShield takes a string with a list of parameters like the query parameters of an URL. It returns a string with the parameters encrypted with a secret key that should be used as a single parameter in a link URL.The integrity of the parameters can be verified and they can be decrypted. If the encrypted parameters are not valid in ...
-
1873 total visitsHTML Sanitizer takes a string with HTML code and strips all the tags that do not make part of a list of safe tags. That list of safe tags is defined as a private class variable. There are some functions to allow usually unsafe tags like script, style, object, embed, etc..Unsafe tag attributes, such as JavaScript ones for event handling, ...
-
1587 total visitsThe CSS classes used to identify the string are renamed every time to foul the spam bots.For Internet Explorer and Opera, CSSProtector only works on pages that use the STRICT DTD. For Mozilla CSS Protector works well with STRICT and LOOSE DTD. Older browsers that do not support CSS will show nothing or a whole mess.
-
2067 total visitsWith PHP, to pass parameters between two pages you can use something like this:http://www.monsite.net/mapage.php?parametre1=123&user=456A visitor can modify thoses parameters to see what happens or to test parameters. For instance, he may modify the user parameter to see the account of another user.PHPSecureURL hides parameters. You do not have to modify your code. You just have to add some lines and ...
-
1902 total visitsSecure URL uses encoder to encrypt URL parameters. It uses PHP output buffer capture support to automatically process the URLs of the links and forms of the current page.The URLs which are to be altered can optionally be restricted through filters. When the current page using the class is loaded, it decrypts the parameter variables and updates the respective global ...
-
1753 total visitsThree protection mechanism are available and can be used. When an invalid attempt to access the protected images is performed, the class can execute exception actions like redirecting the browser to a given URL or displaying a given alternative image.Key Features of Protector:- Serve the image with several headers to tell browses to not cache the images- Avoid hot linking ...
-
1871 total visitsPHP poppassd client connects to a a given poppassd server and attempts to set a new password for the account of an user given the current password.If the server does not accept the new password, the class returns the specific error messages.Requirements: PHP 3.0 or higher
