[PHP_Sec] element index

ENCRYPTION_ALGORITHM

ENCRYPTION_ALGORITHM in php_crypt.php

The algorith that we will use

ENCRYPTION_KEY

ENCRYPTION_KEY in php_crypt.php

The encryption key that we will use. MODIFY IT!

GATHER_NMAP_INFO

GATHER_NMAP_INFO in php_log.php

Will we use nmap to get more info about the attacker?

internal_checks

internal_checks() in php_sec.php

++ INTERNAL USE ++

internal_clean

internal_clean() in php_sec.php

++ INTERNAL USE ++

internal_correct_length

internal_correct_length() in php_sec.php

internal_decrypt

internal_decrypt() in php_crypt.php

++ INTERNAL USE ++

internal_die_action

internal_die_action() in php_sec.php

++ INTERNAL USE ++

internal_encrypt

internal_encrypt() in php_crypt.php

++ INTERNAL USE ++

internal_gather_array_info

internal_gather_array_info() in php_log.php

++ INTERNAL USE ++

internal_gather_cookie_info

internal_gather_cookie_info() in php_log.php

++ INTERNAL USE ++

internal_gather_env_info

internal_gather_env_info() in php_log.php

++ INTERNAL USE ++

internal_gather_files_info

internal_gather_files_info() in php_log.php

++ INTERNAL USE ++

internal_gather_globals_info

internal_gather_globals_info() in php_log.php

++ INTERNAL USE ++

internal_gather_info

internal_gather_info() in php_log.php

++ INTERNAL USE ++

internal_gather_info_about_host

internal_gather_info_about_host() in php_log.php

++ INTERNAL USE ++

internal_gather_nmap_info

internal_gather_nmap_info() in php_log.php

++ INTERNAL USE ++

internal_gather_server_info

internal_gather_server_info() in php_log.php

++ INTERNAL USE ++

internal_gather_session_info

internal_gather_session_info() in php_log.php

++ INTERNAL USE ++

internal_replace

internal_replace() in php_sec.php

++ INTERNAL USE ++

NMAP_OPTIONS

NMAP_OPTIONS in php_log.php

Nmap options to use

php_crypt.php

php_crypt.php in php_crypt.php

php_log.php

php_log.php in php_log.php

php_sec.php

php_sec.php in php_sec.php

sec_check_all_params

sec_check_all_params() in php_sec.php

Check if any field appears to be attacked

sec_check_magic_cookie

sec_check_magic_cookie() in php_sec.php

Check for "Magic Cookies" attack

sec_check_param

sec_check_param() in php_sec.php

Check if a simple field appears to be attacked

sec_clean_all

sec_clean_all() in php_sec.php

Clean the string to avoid XSS, SQL Injection, Directory Traversal and filename/command attacks.

sec_clean_cmd

sec_clean_cmd() in php_sec.php

Clean the string to avoid filename of command attacks

sec_clean_dir

sec_clean_dir() in php_sec.php

Clean the string to avoid Directory Traversal attacks

sec_clean_sql

sec_clean_sql() in php_sec.php

Clean the string to avoid SQL Injection attacks

sec_clean_xss

sec_clean_xss() in php_sec.php

Clean the string to avoid XSS attacks

sec_decrypt

sec_decrypt() in php_crypt.php

Return an string decrypted

sec_die

sec_die() in php_sec.php

The function makes the security actions that are specifieds

sec_encrypt

sec_encrypt() in php_crypt.php

Return an encrypted string

SEC_ERROR_MESSAGE

SEC_ERROR_MESSAGE in php_sec.php

Unique error message to show. Is unique because different messages makes possible vulnerabilities found.

sec_gather_info

sec_gather_info() in php_log.php

Gather all possible information

sec_gather_nmap_info

sec_gather_nmap_info() in php_log.php

Gather information with the nmap tool (must be installed, of course)

sec_gather_server_info

sec_gather_server_info() in php_log.php

Gather information about the $_SERVER array

sec_get_float

sec_get_float() in php_sec.php

sec_get_int

sec_get_int() in php_sec.php

sec_is_attack

sec_is_attack() in php_sec.php

Appears to be an attack?

sec_is_directory_traversal

sec_is_directory_traversal() in php_sec.php

Appears to be an Directory Traversal attack?

sec_is_sql_injection

sec_is_sql_injection() in php_sec.php

Appears to be an SQL Injection attack?

sec_is_valid_email

sec_is_valid_email() in php_sec.php

sec_is_xss

sec_is_xss() in php_sec.php

Appears to be an XSS attack?

SEC_MAX_ARGUMENT_LENGTH

SEC_MAX_ARGUMENT_LENGTH in php_sec.php

Maximun length of any checked parameter.

sec_paranoic_check

sec_paranoic_check() in php_sec.php

Returns true if any meta-character that is stored in $var_meta_characters found

sec_paranoid_check_all_params

sec_paranoid_check_all_params() in php_sec.php

Check if any field appears to be attacked in paranoid mode.

sec_paranoid_check_param

sec_paranoid_check_param() in php_sec.php

Check if a simple field appears to be attacked in paranoid mode.

sec_paranoid_clean

sec_paranoid_clean() in php_sec.php

Paranoid check of the passed string.

sec_put

sec_put() in php_crypt.php

Return an encrypted string

sec_read_cookie

sec_read_cookie() in php_crypt.php

Read a param passed in a Cookie and decrypt it

sec_read_get

sec_read_get() in php_crypt.php

Read a param passed using GET method and decrypt it

sec_read_post

sec_read_post() in php_crypt.php

Read a param passed using POST method and decrypt it

sec_write_cookie

sec_write_cookie() in php_crypt.php

Send an encrypted cookie. To decrypt cookie use the function sec_read_cookie.

sec_write_simple_cookie

sec_write_simple_cookie() in php_crypt.php

Send an encrypted cookie. To decrypt cookie use the function sec_read_cookie.