PHPIDS released
We are proud to announce the first stable release of our earlier discussed PHP Intrusion Detection System or simply PHPIDS. As from now, you will find the project page including a demo, trac and moreover a forum on http://php-ids.org/.
At this point, I would like to thank everyone who helped to improve the quality of the IDS, notably RSnake for providing ha.ckers and sla.ckers.org, Ronald van den Heetkamp for his continuous assistance, Kishor for circumventing (and by that enhancing) our rules numerous times and of course Martin Hinks for porting PHPIDS to .NETIDS. Many thanks also to the webappsec mailinglist.
Feedback is still more than welcome, either by commenting on this post or via the google group.
For my german readers, here is Mario Heiderich's statement:
http://mario.heideri.ch/phpids-der-erste-offizielle-release/
Thanks everybody!
9 Comments:
I remember a project very similar to this one at the Savannah site: http://savannah.nongnu.org/cvs-backup/wasp-sources.tar.gz
hey dude, many broken links on the website.. i can't download PHPIDS and i'm very interested on it...
tell me when you fix it please: pcolomes@gmail.com
Thankz..
Paulo: I'm very sorry, someone made a mistake and now we have a broken server. But it'll be taken care of as soon as possible.
Und warum eigentlich ?
Ich dachte der Keks macht nachts auch Backups von den DBs. Was geht denn gerade genau ?
I don't know what in fact happened.
Lars Strojny is responsible for the the hosting however he keeps staying offline although we actually arranged to set up everything again today.
I'm sorry but we don't know where is is / what he is doing and can't fix anything until he is back.
I apologize.
Just took a quick glance at the website and i must say i think it looks good, the app i mean. I'll be downloading it and giving it a once over tomorrow on one of my test boxes at work.
One thing, does it log to a flatfile or DB? (if it logs at all)
Also, i know it's an IDS an whatnot but does it have any functionality to perform actions once certain rules are met?
I'm not trying to turn it into an IPS or anything, just curious.
Cheerz!
Silentz: Thanks for your interest.
Using the small logging framework you can of course either log into files, send reports via email or store everything in a database by implementing a new concrete db-logging class.
If you mean by performing actions to sanitize detected input - no the PHPIDS doesn't do that at the time and won't do it in future.
You are welcome to post further questions on our forum!
Something like that, I actually ment something along the lines of redirecting them to say a 403/4/6 error page.
But yea, i'll stop by the forum and drop a couple of questions off after i've had a play.
Congrats of your work mate! And to the others as well.
Hey Christian, unfortunately the was some kind of error on the page, but I really wanted to see your project, I will look it up later and write more.
Post a Comment