Web Forensik

NOTE: This project is no longer under active developement.
Check out the successor at: https://github.com/jensvoid/lorg

Web Forensik ist a script that uses PHPIDS to automatically scan your HTTPD logfiles for attacks against web applications. Check the Wiki for installation, configuration, usage.

Features

supports standard log formats (common, combined)
allows user-defined (mod_log_config syntax) formats
automatically pipes your web logs through PHPIDS
categorizes all incidents by type, impact, date, host...
generates reports in CSV, HTML (sortable table), XML

Project Samples

Project Activity

See All Activity >

License

GNU General Public License version 2.0 (GPLv2)

Follow Web Forensik

Web Forensik Web Site

Other Useful Business Software

99.99% Uptime for MySQL and PostgreSQL Databases

Sub-second maintenance. 2x read/write performance. Built-in vector search for AI apps.

Cloud SQL Enterprise Plus delivers near-zero downtime with 35 days of point-in-time recovery. Supports MySQL, PostgreSQL, and SQL Server.

Try Free

Rate This Project

User Ratings

3.7 out of 5 stars

★★★★★

★★★★

★★★

★★

★

ease 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 1 / 5

features 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 1 / 5

design 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 1 / 5

support 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 1 / 5

User Reviews

Filter Reviews:

All

shadowcat-idn Posted 2013-07-05

Unable to work out how to install this software. The tar ball contains 93 files whilst the documentation states how to install *one* of those. Where do the rest go?!
webforensik Posted 2013-06-24

webforensik is further developed as `lorg' - github.com/jensvoid/lorg - with many new features added (various detection modules, man-machine distinction, attack quantification, geoip/dnsbl support, logfile tamper checks, ...)
lacroix-iv Posted 2013-02-09

Thank you for doing this, I find it really useful. I tried to run it with the latest PHPIDS and I received some PHP errors so I fixed it and put the code on github : github.com/nekhbet/WebForensik Hope this will help someone.

Additional Project Details

Intended Audience

System Administrators

User Interface

Command-line

Programming Language

PHP

Related Categories

PHP Security Software, PHP Log Analysis Software

Registered

2012-04-19

Similar Business Software

Kasm Workspaces

Kasm Workspaces streams your workplace environment directly to your web browser…on any device and from any location. Kasm uses our high-performance streaming and secure isolation technology to provide web-native Desktop as a Service (DaaS), application streaming, and secure/private web...

See Software
Auth0

Auth0 takes a modern approach to Identity, providing secure access to any application, for any user. Safeguarding billions of login transactions each month, Auth0 delivers convenience, privacy, and security so customers can focus on innovation. Auth0 is part of Okta, The World’s Identity...

See Software
Reflectiz

Reflectiz is a web exposure management platform that helps organizations identify, monitor, and mitigate security, privacy, and compliance risks across their online environments. It provides full visibility and control over first, third, and fourth-party components like scripts, trackers, and...

See Software
Aikido Security

Secure your code, cloud, and runtime in one central system. Aikido’s all-in-one security platform is loved by developers and security teams alike with full security visibility, insight in what matters most, and fast/automatic vulnerability fixes. Teams get security done with Aikido thanks...

See Software
AdRem NetCrunch

NetCrunch is a powerful, scalable, all-in-one network monitoring system built for modern IT environments. It supports agentless monitoring of thousands of devices, covering SNMP, servers, virtualization (VMware, Hyper-V), cloud (AWS, Azure, GCP), traffic flows (NetFlow, sFlow), logs, and custom...

See Software
ManageEngine Endpoint Central

ManageEngine Endpoint Central is built to secure the digital workplace while also giving IT teams complete control over their enterprise endpoints. It delivers a security-first approach by combining advanced endpoint protection with comprehensive management, allowing IT teams to manage the...

See Software