This module provides attack surface reduction enhancements against the HTTP Flood Attacks at the web application level. Massive crawling/scanning tools, HTTP Flood tools can be detected and blocked by this module via htaccess, firewall or iptables, etc. (like mod_evasive)

You can use this module by including "iosec.php" to any PHP file which wants to be protected.

You can test module here: http://www.iosec.org/test.php (demo)

Watch the Proof of Concept video: http://goo.gl/dSiAL

Hakin9 IT Security Magazine Article about IOSEC http://goo.gl/aQM4Di (different format -> http://goo.gl/JKMUPN)

IJNSA Article at http://goo.gl/LLxRdX

WP Plugin Page http://goo.gl/nF5nD

CHANGES v.1.8.2
- Iptables Auto Ban Bash Script Included
- Token Access via Implicit Deny
- Reverse Proxy Support
- reCAPTCHA Support

IOSEC is used by over 15.000 sites in 2013!

Do you want more features? Check for third party addons http://sf.net/projects/iosecaddons

Gökhan Muharremoğlu

Features

  • This is a unique project and it is the world's first web application flood guard script.
  • At web application (scripting) level you can,
  • - Block proxies. (only via HTTP header)
  • - Detect flooding IP addresses.
  • - Slow down or restrict access for automated tools (HTTP flood, brute force tools, vulnerability scanners, etc.)
  • - Save your server & backend infrastructure resources (database, cpu, ram, etc.) under an attack.
  • - Restrict access permanently or temporarily for listed IP addresses in "banlist" file.
  • - Notify yourself via email alerts when attacks begin.
  • - Implicit deny for DoS/DDoS attacks
  • - Integrate it with CloudFlare, Firewall, Iptables, etc.
  • - Reduce attack surface at OSI Layer 7.
  • In 2 months, more than 1000 downloads now, thank you.
  • Don't forget to read articles about IOSEC (links above) to learn what it does precisely.

Project Samples

Project Activity

See All Activity >

Follow HTTP Anti Flood/DoS Security Module

HTTP Anti Flood/DoS Security Module Web Site

Other Useful Business Software

Monitor your Cisco ASA like an expert with Solarwinds® Network Insight™ for Cisco® ASA, a feature of NPM and NCM. Monitor your Cisco ASA like an expert with Solarwinds® Network Insight™ for Cisco® ASA, a feature of NPM and NCM. Icon
  • Get visibility into the health and performance of your entire Cisco ASA environment in a single dashboard
  • View VPN tunnel status and monitoring firewall high availability, health, and readiness

Rate This Project

Login To Rate This Project

User Ratings

★★★★★
★★★★
★★★
★★
4
0
0
0
0
ease 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 0 / 5
features 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 0 / 5
design 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 0 / 5
support 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 0 / 5

User Reviews

  • this might sound silly but how do i implement this on my machine? can i use it to protect an apache server? yer? HOW??!! if its possible to send me reply by emailing eyadmas@hotmail.co.uk plz

  • nice security tool for preventing and detecting bad-guys.

  • 10 seconds is too short, given the well-known Captcha problems. Otherwise good.

  • small and efficient and gets the job done.

Read more reviews >

Additional Project Details

Languages

English, Turkish

Intended Audience

Advanced End Users, System Administrators, End Users/Desktop, Testers, Security Professionals, Security

Programming Language

PHP

Database Environment

Flat-file

Registered

2012-04-02