HTTP Anti Flood/DoS Security Module v.1.8.1 - Detect Flooder IPs, Reduce Attack Surface against HTTP Flood Attacks

This module provides attack surface reduction enhancements against the HTTP Flood Attacks at the web application level. Massive crawling/scanning tools, HTTP Flood tools can be detected and blocked by this module via htaccess, firewall or iptables, etc. (like mod_evasive)

You can use this module by including "iosec.php" to any PHP file which wants to be protected.


Features
  • This is a unique project and it is the world's first web application flood guard script.
  • At web application (scripting) level you can,
  • - Block proxies. (only via HTTP header)
  • - Detect flooding IP addresses.
  • - Slow down or restrict access for automated tools (HTTP flood, brute force tools, vulnerability scanners, etc.)
  • - Save your server & backend infrastructure resources (database, cpu, ram, etc.) under an attack.
  • - Restrict access permanently or temporarily for listed IP addresses in "banlist" file.
  • - Notify yourself via email alerts when attacks begin.
  • - Implicit deny for DoS/DDoS attacks
You can test module here: http://www.iosec.org/test.php (demo)

Watch the Proof of Concept video: http://youtu.be/LzLY_SKLq9w

Wordpress Plugin Page http://wordpress.org/extend/plugins/iosec-anti-flood-security-gateway-module

CHANGES v.1.8.1
- Improved Implicit Deny Mode for Banned IP(s) (without detection)
- Iptables Auto Ban Bash Script Included
- Request Cache Size Option
- Connection Limit Support
- Whitelist Support
- Reverse Proxy Support
- reCAPTCHA Support 

You can use IOSEC under .NET see. http://phalanger.codeplex.com/


Download iosec.http.anti.flood.v.1.8.1_with_iptables_bash_script.zip (201.4 kB)
Download other versions -
http://sourceforge.net/projects/iosec/files/

Source -
http://sourceforge.net/projects/iosec/

Previous post regarding IOSEC -
http://santoshdudhade.blogspot.in/2012/07/http-anti-flooddos-security-module.html
http://santoshdudhade.blogspot.in/2012/09/http-anti-flooddos-security-module-v17.html