Looking to hire Laravel developers? Try LaraJobs

laravel5-probe-detection maintained by seanhayes-com

Description
A Laravel 5 package to log known website probing attacks.
Author
Sean Hayes
Last update
2020/02/18 16:37 (dev-master)
License
MIT
Links
Homepage - GitHub - Packagist
Downloads
5
Tags
security - laravel - website - seanhayes - probe

dev-master

Last update
2020/02/18 16:37
License
MIT
Require
  • laravel/framework 5.1.*
  • torann/geoip 1.0.8
0.1.2

Last update
2020/02/17 22:53
License
MIT
Require
  • laravel/framework 5.1.*
  • torann/geoip 1.0.8
0.1.1

Last update
2020/02/17 21:11
License
MIT
Require
  • laravel/framework 5.1.*
  • torann/geoip 1.0.8
Comments
comments powered by Disqus

Laravel 5 Probe Detection

Log and ban known website probing attacks and eliminate wasted site resources

Minimum Requirements

Laravel 5.1 and PHP 5.5.9

Installation

You can install the package via composer:

composer require seanhayes-com/laravel5-probe-detection

Step 2: Configuration

Add the following to your config/app.php in the providers array:

SeanHayes\Probe\ProbeServiceProvider::class,
Torann\GeoIP\GeoIPServiceProvider::class,

You should also add the following to the aliases array:

'Probe'     => SeanHayes\Probe\ProbeFacade::class,
'GeoIP'     => Torann\GeoIP\GeoIPFacade::class,

You can then publish the migration with:

php artisan vendor:publish --provider="SeanHayes\Probe\ProbeServiceProvider" --tag="migrations"

After the migration has been published you can create the prob_log table by running the migrations:

php artisan migrate

You can optionally publish the config file with:

php artisan vendor:publish --provider="SeanHayes\Probe\ProbeServiceProvider" --tag="config"

Configuration

Change settings in config/probe.php

Add routes to handle certain common attack vectors or URIs added to watch_uris in config/probe.php

Route::get('/wp-login.php', function () {
	\SeanHayes\Probe\Probe::logRequest();
});
Route::get('/{name}/wp-login.php', function () {
	\SeanHayes\Probe\Probe::logRequest();
});
Route::get('/wp-admin/', function () {
	\SeanHayes\Probe\Probe::logRequest();
});
Route::get('/wp-content/', function () {
	\SeanHayes\Probe\Probe::logRequest();
});
Route::get('/{name}/wp-admin/', function () {
	\SeanHayes\Probe\Probe::logRequest();
});
Route::get('/xmlrpc.php', function () {
	\SeanHayes\Probe\Probe::logRequest();
});
Route::get('/wp-cron.php', function () {
	\SeanHayes\Probe\Probe::logRequest();
});
Route::post('/wp-login.php', function () {
	\SeanHayes\Probe\Probe::logRequest();
});
Route::post('/{name}/wp-login.php', function () {
	\SeanHayes\Probe\Probe::logRequest();
});
Route::post('/wp-admin/', function () {
	\SeanHayes\Probe\Probe::logRequest();
});
Route::post('/{name}/wp-admin/', function () {
	\SeanHayes\Probe\Probe::logRequest();
});
Route::post('/xmlrpc.php', function () {
	\SeanHayes\Probe\Probe::logRequest();
});
Route::post('/wp-cron.php', function () {
	\SeanHayes\Probe\Probe::logRequest();
});

Usage

Include the path in your Controller or AppServiceProvider

use SeanHayes\Probe\Probe;

And the call to process the request in your method

Probe::logRequest();

Troubleshooting

If you experience file cache errors, you can change your CACHE_DRIVER to array in your .env file.

CACHE_DRIVER=array