We have talked about PHPIDS in detail here. Now There is a new tool myphpips. When we have a IDS what is the need for IPS
An IDS does just what its name tells us – it detects network intrusion. Simple enough! However, the IDS is basically a “town crier” in that it will notify other network devices about the attack, but does not directly defend against the attack itself. Major issue using IDS is by the time the IDS detects an issue and notifies the appropriate network devices, the beginning of the infected traffic flow is already in the network.
where as Intrusion Prevention System (IPS) does sit in the middle of the traffic flow – in this case, the IPS will actually be our Cisco router. When the IPS detects a problem, the IPS itself can prevent the traffic from entering the network.
MyPHPIPS (MyPHP Intrusion Prevention System) is an open source PHP WebApplication Intrusion Prevention System. It was based on PHPIDS (phpids.org) and distributed under the LGPL License. This work is supported by CyberSecurity Malaysia. Small organisation can hope for some advance environment support from the developers.
MyPHPIPS intends to assist the web developer/maintainers to secure their PHP CMS/application deployments without having with minimal resources . Most of the signatures are for web applicaton mainly for php.
As MyPHPIPS is a portable and less-hassle framework that serves as an extrasecurity layer to defend against invalid/malicious requests to the web application orcontent management systems. It is easy to install, manage and run.
Download myphpips:
MyPHPIPS-v0.1.1-0.7-alpha.zip-