Search for:

We aggregate information from all open source repositories to provide the most of useful open source products, from Enterprise product to small libraries across all platforms. Please search and find what you want.

HTTP Anti Flood/DoS Security Module

Posted on by Robin Ding Leave a comment Firewalls, Monitoring, Security
5.0

This module provides attack surface reduction enhancements against the HTTP Flood Attacks at the web application level. Massive crawling/scanning tools, HTTP Flood tools can be detected and blocked by this module via htaccess, firewall or iptables, etc. (like mod_evasive)

You can use this module by including “iosec.php” to any PHP file which wants to be protected.

You can test module here: http://www.iosec.org/test.php (demo)

Watch the Proof of Concept video: http://goo.gl/dSiAL

Hakin9 IT Security Magazine Article about IOSEC http://goo.gl/aQM4Di (different format -> http://goo.gl/JKMUPN)

IJNSA Article at http://goo.gl/LLxRdX

WP Plugin Page http://goo.gl/nF5nD

CHANGES v.1.8.2
– Iptables Auto Ban Bash Script Included
– Token Access via Implicit Deny
– Reverse Proxy Support
– reCAPTCHA Support

IOSEC is used by over 15.000 sites in 2013!

Do you want more features? Check for third party addons http://sf.net/projects/iosecaddons

Gökhan Muharremoğlu

Cloudbased voice solutions are common in enterprise networks and frustrating for operations teams to manage. Simplify VoIP monitoring by having a proactive analysis of on-prem, hybrid and UCaaS voice services. Try the ThousandEyes VoIP monitoring solution today, free.

Post Views: 447

Related Projects:

  1. BASE
  2. knocker
  3. mikrotik-ips-ids
  4. Netbios Share Scanner
Website http://www.iosec.org/test.php
Tags
License GNU Library or Lesser General Public License version 3.0 (LGPLv3)
Platform Linux Mac Windows
Features
  • This is a unique project and it is the world's first web application flood guard script.
  • At web application (scripting) level you can,
  • - Block proxies. (only via HTTP header)
  • - Detect flooding IP addresses.
  • - Slow down or restrict access for automated tools (HTTP flood, brute force tools, vulnerability scanners, etc.)
  • - Save your server & backend infrastructure resources (database, cpu, ram, etc.) under an attack.
  • - Restrict access permanently or temporarily for listed IP addresses in "banlist" file.
  • - Notify yourself via email alerts when attacks begin.
  • - Implicit deny for DoS/DDoS attacks
  • - Integrate it with CloudFlare, Firewall, Iptables, etc.
  • - Reduce attack surface at OSI Layer 7.
  • In 2 months, more than 1000 downloads now, thank you.
  • Don't forget to read articles about IOSEC (links above) to learn what it does precisely.