HTTP Anti Flood/DoS Security Module Icon

HTTP Anti Flood/DoS Security Module

Detect Flooder IPs, Reduce Attack Surface against HTTP Flood Attacks

21 Recommendations
97 Downloads (This Week)
Last Update:
Download iosec.http.anti.flood.v.1.8.2_with_…zip
Browse All Files
Windows Mac Linux

Screenshots

Suspended Process Test Page Implicit Deny Mode Configuration Menu

Description

This module provides attack surface reduction enhancements against the HTTP Flood Attacks at the web application level. Massive crawling/scanning tools, HTTP Flood tools can be detected and blocked by this module via htaccess, firewall or iptables, etc. (like mod_evasive)

You can use this module by including "iosec.php" to any PHP file which wants to be protected.

You can test module here: http://www.iosec.org/test.php (demo)

Watch the Proof of Concept video: http://goo.gl/dSiAL

Read the Hakin9 IT Security Magazine Article about IOSEC http://goo.gl/1dcA9 (and http://goo.gl/VC9B6)

Wordpress Plugin Page http://goo.gl/nF5nD

CHANGES v.1.8.2
- Iptables Auto Ban Bash Script Included
- Token Access via Implicit Deny
- Connection Limit Support
- Whitelist Support
- Reverse Proxy Support
- reCAPTCHA Support

Do you want more features? Check for third party addons http://sf.net/projects/iosecaddons

Gökhan Muharremoğlu
http://linkedin.com/in/gokhanmuharremoglu

HTTP Anti Flood/DoS Security Module Web Site

Categories

Firewalls, Monitoring, Security

License

GNU Library or Lesser General Public License version 3.0 (LGPLv3)

Features

  • This is a unique project and it is the world's first web application flood guard script.
  • At web application (scripting) level you can,
  • - Block proxies. (only via HTTP header)
  • - Detect flooding IP addresses.
  • - Slow down or restrict access for automated tools (HTTP flood, brute force tools, vulnerability scanners, etc.)
  • - Save your server & backend infrastructure resources (database, cpu, ram, etc.) under an attack.
  • - Restrict access permanently or temporarily for listed IP addresses in "banlist" file.
  • - Notify yourself via email alerts when attacks begin.
  • - Implicit deny for DoS/DDoS attacks
  • In 2 months, more than 1000 downloads now, thank you.

Update Notifications





User Ratings

100% recommended
 
 
21
0
Write a Review

User Reviews

Sort By
Most Helpful
Filter
All
  • Posted by noah simpson 2012-09-15

    small and efficient and gets the job done.

  • Posted by Joseph 2012-10-29

    Reliable and runs smoothly

  • Posted by OpenID User 2012-10-26

    10 seconds is too short, given the well-known Captcha problems. Otherwise good.

  • Posted by eyadmas 2013-04-09

    this might sound silly but how do i implement this on my machine? can i use it to protect an apache server? yer? HOW??!! if its possible to send me reply by emailing eyadmas@hotmail.co.uk plz

  • Posted by hfurius 2013-02-24

    nice security tool for preventing and detecting bad-guys.

  • Posted by Dillan 2013-02-14

    iosec works perfectly, thanks

Read more reviews

Additional Project Details

Languages

English, Turkish

Intended Audience

Advanced End Users, End Users/Desktop, Security Professionals, Testers, Security, System Administrators

Programming Language

PHP

Registered

2012-04-02

Icons must be PNG, GIF, or JPEG and less than 1 MiB in size. They will be displayed as 48x48 images.