Download the PHP package rafalmasiarek/threat-detector without Composer
On this page you can find all versions of the php package rafalmasiarek/threat-detector. It is possible to download/install these versions without Composer. Possible dependencies are resolved automatically.
Table of contents
Download rafalmasiarek/threat-detector
More information about rafalmasiarek/threat-detector
Files in rafalmasiarek/threat-detector
Download rafalmasiarek/threat-detector
More information about rafalmasiarek/threat-detector
Files in rafalmasiarek/threat-detector
Vendor rafalmasiarek
Package threat-detector
Short Description Heuristic, modular threat detection (signal-only) with weighted float scoring, predefined thresholds, and PSR-15 middleware for PSR-7 apps.
License MIT
Package threat-detector
Short Description Heuristic, modular threat detection (signal-only) with weighted float scoring, predefined thresholds, and PSR-15 middleware for PSR-7 apps.
License MIT
FAQ
After the download, you have to make one include require_once('vendor/autoload.php');. After that you have to import the classes with use statements.
Example:
Example:
If you use only one package a project is not needed. But if you use more then one package, without a project it is not possible to import the classes with use statements.
In general, it is recommended to use always a project to download your libraries. In an application normally there is more than one library needed.
In general, it is recommended to use always a project to download your libraries. In an application normally there is more than one library needed.
Some PHP packages are not free to download and because of that hosted in private repositories.
In this case some credentials are needed to access such packages.
Please use the auth.json textarea to insert credentials, if a package is coming from a private repository.
You can look here for more information.
- Some hosting areas are not accessible by a terminal or SSH. Then it is not possible to use Composer.
- To use Composer is sometimes complicated. Especially for beginners.
- Composer needs much resources. Sometimes they are not available on a simple webspace.
- If you are using private repositories you don't need to share your credentials. You can set up everything on our site and then you provide a simple download link to your team member.
- Simplify your Composer build process. Use our own command line tool to download the vendor folder as binary. This makes your build process faster and you don't need to expose your credentials for private repositories.
Please rate this library. Is it a good library?
Informations about the package threat-detector
rafalmasiarek/threat-detector
Heuristic, modular threat detection (signal-only) with weighted float scoring, predefined thresholds, and PSR-15 middleware for PSR-7 applications.
โ ๏ธ This library is a signal generator. It does not replace proper validation/sanitization/escaping, CSP, prepared statements, etc.
Features
- ๐งฉ Modular scanners โ each category (XSS, SQLi, SSRF, โฆ) in a separate class.
- โ๏ธ Weighted float scoring โ per-category weights; combine multiple signals.
- ๐๏ธ Predefined thresholds โ
LOW,MEDIUM,HIGH(or custom floats). - ๐งต PSR-15 middleware โ scan query, body, headers, cookies; annotate request; optional header
X-Threat-Suspect. - ๐ phpDocs & comments โ production-friendly code with clear docs.
- โ Unit tests โ a couple of quick checks to get you started.
- ๐ Examples โ basic HTML form + PSR-15 middleware demo.
Requirements
- PHP 8.1+
- ext-mbstring
Installation
Using Composer:
If you are using this repository locally (path repo):
Quick Start (Core)
Example output:
Quick Start (PSR-15 Middleware)
Example result:
Scoring
- Weights: per category (e.g.,
SQLI=2.0,CMD_INJECTION=2.5,CRLF=1.0). -
Score formula:
- Threshold: request is suspect when
score โฅ threshold.
Predefined thresholds
| Name | Value | Sensitivity |
|---|---|---|
| LOW | 1.0 | Very sensitive |
| MEDIUM | 2.5 | Balanced (default) |
| HIGH | 5.0 | Strict |
Examples
-
<script>alert(1)</script>
Hits:XSS=[TAG_SCRIPT, HTML_TAGS]
Score:1.5 ร 2 = 3.0โ suspect atMEDIUM UNION SELECT password FROM users
Hits:SQLI=[UNION_SELECT]
Score:2.0 ร 1 = 2.0โ not suspect atMEDIUM, suspect atLOW
Categories & Scanners
- XSS โ inline event handlers,
<script>,javascript:URIs. - SQLI โ
UNION SELECT,SLEEP(),INFORMATION_SCHEMA, etc. - CMD_INJECTION โ subshells,
;,&&,wget/curl, redirects. - PATH_TRAVERSAL โ
../, URL-encoded traversal,file://, wrappers. - CRLF โ header injection sequences.
- SSRF โ URLs to
localhost,127.0.0.1,RFC1918ranges. - XXE โ
<!DOCTYPE>,<!ENTITY>, external SYSTEM. - NOSQL โ Mongo-like operators
$where,$regex. - LDAP โ wildcards, null bytes.
- SERIALIZATION โ PHP serialized payload patterns.
Integration Ideas
- Add to Slim/Mezzio pipeline as PSR-15 middleware.
- Run against form input before sending mail (contact forms).
- Log suspect inputs into a security audit trail.
- Flag suspicious requests in rate-limiting / WAF logic.
Tests & Examples
- PHPUnit tests included (
tests/):TruePositiveDetectionsTest.phpFalsePositiveHeuristicsTest.php
- Example apps in
examples/:basic/(HTML form demo)psr15/(middleware demo)
Run tests:
Security Notice
This library generates signals only.
Always combine with:
- Prepared statements for SQL queries
- Proper HTML escaping and CSP
- Strong input validation
Folder Structure
License
MIT
All versions of threat-detector with dependencies
PHP Build Version
Package Version
Requires
php Version
>=8.1
psr/http-message Version ^1.1 || ^2.0
psr/http-server-middleware Version ^1.0
psr/http-server-handler Version ^1.0
psr/http-message Version ^1.1 || ^2.0
psr/http-server-middleware Version ^1.0
psr/http-server-handler Version ^1.0
The package rafalmasiarek/threat-detector contains the following files
Loading the files please wait ....