PHP lightweight in-app Web Application Firewall.
Features / Protections Against:
- Cross-site scripting (XSS)
- SQL injection (SQLI)
- Remote file inclusion (RFI)
- Remote code execution (RCE)
- Local file inclusion (LFI)
- Denial of service (DOS)
- Web shells
How to use:
Edit - php.ini File:
auto_prepend_file = "/path/to/AdelWAF.php"
--------------------------------OR--------------------------------
Edit - .htaccess File (only if unable to edit php.ini)
<IfModule php7_module> php_value auto_prepend_file "/path/to/AdelWAF.php" </IfModule> <IfModule lsapi_module> php_value auto_prepend_file "/path/to/AdelWAF.php" </IfModule>
--------------------------------OR--------------------------------
Include this PHP file in every page you want to protect.
Note: Works with all PHP frameworks (Use it as a filter)