This module provides attack surface reduction enhancements against the HTTP Flood Attacks at the web application level. Massive crawling/scanning tools, HTTP Flood tools can be detected and blocked by this module via htaccess, firewall or iptables, etc. (like mod_evasive)

You can use this module by including "iosec.php" to any PHP file which wants to be protected.

You can test module here: http://www.iosec.org/test.php (demo)

Watch the Proof of Concept video: http://goo.gl/dSiAL

Hakin9 IT Security Magazine Article about IOSEC http://goo.gl/aQM4Di (different format -> http://goo.gl/JKMUPN)

IJNSA Article at http://goo.gl/LLxRdX

WP Plugin Page http://goo.gl/nF5nD

CHANGES v.1.8.2
- Iptables Auto Ban Bash Script Included
- Token Access via Implicit Deny
- Reverse Proxy Support
- reCAPTCHA Support

Do you want more features? Check for third party addons http://sf.net/projects/iosecaddons

Gökhan Muharremoğlu

Features

  • This is a unique project and it is the world's first web application flood guard script.
  • At web application (scripting) level you can,
  • - Block proxies. (only via HTTP header)
  • - Detect flooding IP addresses.
  • - Slow down or restrict access for automated tools (HTTP flood, brute force tools, vulnerability scanners, etc.)
  • - Save your server & backend infrastructure resources (database, cpu, ram, etc.) under an attack.
  • - Restrict access permanently or temporarily for listed IP addresses in "banlist" file.
  • - Notify yourself via email alerts when attacks begin.
  • - Implicit deny for DoS/DDoS attacks
  • - Integrate it with CloudFlare, Firewall, Iptables, etc.
  • - Reduce attack surface at OSI Layer 7.
  • In 2 months, more than 1000 downloads now, thank you.
  • Don't forget to read articles about IOSEC (links above) to learn what it does precisely.
  • IOSEC has been used by over 15.000 sites in 2013!

Project Samples

Play Video Implicit Deny Mode Configuration Menu Suspended Process Test Page

Project Activity

See All Activity >

Categories

Security, Firewall, Network Monitoring, Brute Force

License

GNU Library or Lesser General Public License version 3.0 (LGPLv3)

Follow HTTP Anti Flood/DoS Security Module

HTTP Anti Flood/DoS Security Module Web Site

Other Useful Business Software
Need To Secure Your Public Cloud? Icon
Need To Secure Your Public Cloud?

Built for Developers, DevOps and Engineering Teams

View all cloud assets of AWS, Google Cloud, Azure, Kubernetes, Digital Ocean in one place. Automates security misconfigurations of assets with guidance to resolve them. Covers far beyond basic checklists. It automatically evaluates the security misconfigs of the assets & provides step-by-step guidance to resolve them
Learn More
Rate This Project
Login To Rate This Project

User Ratings

5.0 out of 5 stars
★★★★★
★★★★
★★★
★★
4
0
0
0
0
ease 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 0 / 5
features 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 0 / 5
design 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 0 / 5
support 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 0 / 5

User Reviews

Filter Reviews:
All
  • valneysl Posted 2018-11-25
    Hello everyone, I would like to know if it is possible to put in a website with html format and how I do it, thank you already
  • eyadooooo Posted 2013-04-09
    this might sound silly but how do i implement this on my machine? can i use it to protect an apache server? yer? HOW??!! if its possible to send me reply by emailing eyadmas@hotmail.co.uk plz
  • hfurius Posted 2013-02-24
    nice security tool for preventing and detecting bad-guys.
  • oid-4027366 Posted 2012-10-26
    10 seconds is too short, given the well-known Captcha problems. Otherwise good.
Read more reviews >

Additional Project Details

Languages

English, Turkish

Intended Audience

Advanced End Users, System Administrators, End Users/Desktop, Testers, Security Professionals, Security

Programming Language

PHP

Database Environment

Flat-file

Related Categories

PHP Security Software, PHP Firewall Software, PHP Network Monitoring Software, PHP Brute Force Tool

Registered

2012-04-02
Report inappropriate content