{"id":18035831,"url":"https://github.com/echo-devim/litewaf","last_synced_at":"2025-09-06T16:44:02.554Z","repository":{"id":82335407,"uuid":"286773299","full_name":"echo-devim/litewaf","owner":"echo-devim","description":"Lightweight In-App Web Application Firewall for PHP","archived":false,"fork":false,"pushed_at":"2020-08-26T07:02:26.000Z","size":29,"stargazers_count":43,"open_issues_count":0,"forks_count":6,"subscribers_count":4,"default_branch":"master","last_synced_at":"2025-03-23T10:35:51.892Z","etag":null,"topics":["attack-log","attack-prevention","php","sanity-check","security","sqlinjection","waf","xss"],"latest_commit_sha":null,"homepage":"","language":"PHP","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/echo-devim.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2020-08-11T14:58:50.000Z","updated_at":"2025-01-10T21:46:51.000Z","dependencies_parsed_at":null,"dependency_job_id":"27eb67c8-4a6e-4242-a7e4-c9f3b95b54cf","html_url":"https://github.com/echo-devim/litewaf","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/echo-devim%2Flitewaf","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/echo-devim%2Flitewaf/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/echo-devim%2Flitewaf/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/echo-devim%2Flitewaf/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/echo-devim","download_url":"https://codeload.github.com/echo-devim/litewaf/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":245809567,"owners_count":20676010,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["attack-log","attack-prevention","php","sanity-check","security","sqlinjection","waf","xss"],"created_at":"2024-10-30T12:10:25.889Z","updated_at":"2025-03-27T08:30:35.606Z","avatar_url":"https://github.com/echo-devim.png","language":"PHP","funding_links":[],"categories":[],"sub_categories":[],"readme":"# LiteWAF\n\n**LiteWAF** is a simple in-app Web Application Firewall. It is a single `php` script that must be included at the beginning of each page you want to protect.\nFor each request, the script parses the parameters looking for well known attacks.\n\nActually the script supports the following attack types:\n*  XSS\n*  SQL Injection\n*  Path Traversal\n*  Remote Command Execution\n\nWhen an attack attempt is detected the script logs the event into `attacklogs.php` file and then redirects the user to a default page.\n\nThe `attacklogs.php` script contains the logs, but it is authenticated. Thus means that you need to provide the right password to access the logs (url: `attacklogs.php?pwd=your_password`).\nEven `attacklogs.php` is protected by LiteWAF.\n\nAt the moment the logs are stored in plain text. Each row contains several information about the event (datetime, ip, user-agent, url requested, attack type, etc.).\n\nThis tool is based on signature matching, this means that bypass techniques can exist. However it should block and log the major part of the attacks.\n\n## Configuration\n\nYou can configure the tool editing the beginning of `litewaf.php`.\nYou can set where to redirect the user when an attack is detected (index is the default location). You can set the log file path (it **must be** a php file).\nYou *must set* the directory containing `litewaf.php`.\nFinally, you can set the password to access the log file (random by default) and if redirect a user that provides the wrong credentials.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fecho-devim%2Flitewaf","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fecho-devim%2Flitewaf","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fecho-devim%2Flitewaf/lists"}