资 源 简 介
PhProtector allows you to easily secure a PHP site.
It uses regular expression pattern matching to find malicious http Sql injection requests.
It protects against Cross-site transforming the special characters in html entities.
It protects against Spam/CSRF by using javascript and CSS with random security tokens, this should keep you safe against spam crawlers that do not understand JS/CSS and CSRF attacks.
It protects your backoffice by having sessions terminating by inactivity time and preventing Session Hijacking.
The logging is done in xml and shows atacker information and the risk associated.
It protects against:
* SQL injection (COOKIES(v0.3.2 BETA), POST, GET )
* Cross-site scripting (COOKIES(v0.3.2 BETA), POST, GET)
* Disclosure of PHP/Mysql errors
* File null byte attacks (v0.3.2 BETA)
* SPAM/CSRF attacks in forms (v0.3.2 BETA)
* Sessions terminating by inactivity, Session Hijacking (v0.3.2 BETA)
The reasons to use this script:
* You are a b
