Skip to content

Latest commit

 

History

History
53 lines (47 loc) · 1.23 KB

README.md

File metadata and controls

53 lines (47 loc) · 1.23 KB

xWAF - Web Application Firewall

Original Free Web Application Firewall, Open-Source.

Features

  • XSS Vulns Fixed.
  • SQL Injection Fixed.
  • Anti-Cookie-Steal Method.
  • HTML Malicious Code's Vulns Fixed.
  • CSRF Easy to use, and validation.
  • Block HTML Upgraded.
  • Lightweight.
  • Array Support, All Bypass fixed.
  • Advanced Bot validation, Browser Validation.
  • Most Poc's SQLi and XSS.
  • Security upgraded.
  • Errors supression.
  • Cloudflare and BlazingFast Support.

Sample Usage

// Before all your code starts.
require('xwaf.php');
$xWAF = new xWAF();
$xWAF->start();
// Your code below.

Advanced Usage

// Before of all your CODE.
require('xwaf.php');
$xWAF = new xWAF();
// Cloudflare Mode [Optional]
$xWAF->useCloudflare();
// BlazingFast Mode [Optional]
$xWAF->useBlazingfast();
// Use Own IP Header [Optional]
$xWAF->customIPHeader('IP-Header');
// Anti-Cookie-Steal Method [Optional]
$xWAF->antiCookieSteal('username'); // For trigger if on PHPSESSID is logged.

// Check separated types.
$xWAF->checkGET();
$xWAF->checkPOST();
$xWAF->checkCOOKIE();
// Your code below.

CSRF Validation Example

Please read test.php

Requirements

  • Min: PHP5.3 (With common functions)