Web Forensik

NOTE: This project is no longer under active developement.
Check out the successor at: https://github.com/jensvoid/lorg

Web Forensik ist a script that uses PHPIDS to automatically scan your HTTPD logfiles for attacks against web applications. Check the Wiki for installation, configuration, usage.

Features

supports standard log formats (common, combined)
allows user-defined (mod_log_config syntax) formats
automatically pipes your web logs through PHPIDS
categorizes all incidents by type, impact, date, host...
generates reports in CSV, HTML (sortable table), XML

Project Samples

Project Activity

See All Activity >

License

GNU General Public License version 2.0 (GPLv2)

Follow Web Forensik

Web Forensik Web Site

User Ratings

3.7 out of 5 stars

★★★★★

★★★★

★★★

★★

★

ease 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 1 / 5

features 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 1 / 5

design 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 1 / 5

support 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 1 / 5

User Reviews

Filter Reviews:

★★★★★

webforensik Posted 2013-06-24

webforensik is further developed as `lorg' - github.com/jensvoid/lorg - with many new features added (various detection modules, man-machine distinction, attack quantification, geoip/dnsbl support, logfile tamper checks, ...)
lacroix-iv Posted 2013-02-09

Thank you for doing this, I find it really useful. I tried to run it with the latest PHPIDS and I received some PHP errors so I fixed it and put the code on github : github.com/nekhbet/WebForensik Hope this will help someone.

Additional Project Details

Intended Audience

System Administrators

User Interface

Command-line

Programming Language

PHP

Related Categories

PHP Security Software, PHP Log Analysis Software

Registered

2012-04-19

Similar Business Software

Kasm Workspaces

Kasm Workspaces streams your workplace environment directly to your web browser…on any device and from any location. Kasm uses our high-performance streaming and secure isolation technology to provide web-native Desktop as a Service (DaaS), application streaming, and secure/private web...

See Software
SpamTitan

SpamTitan email security is an email spam filter for businesses, smbs, MSPs, and schools. SpamTitan email security blocks spam as well as phishing and day-zero attacks, viruses, malware, ransomware, and other email threats. Helps control mail flow, clean it, and protect against unwanted...

See Software
New Relic

There are an estimated 25 million engineers in the world across dozens of distinct functions. As every company becomes a software company, engineers are using New Relic to gather real-time insights and trending data about the performance of their software so they can be more resilient and...

See Software