PHPackages                             dmk/mkphpids - PHPackages - PHPackages  [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register)

1. [Directory](/)
2. /
3. [Security](/categories/security)
4. /
5. dmk/mkphpids

ArchivedTypo3-cms-extension[Security](/categories/security)

dmk/mkphpids
============

Currently the PHPIDS detects all sorts of XSS, SQL Injection, header injection, directory traversal, RFE/LFI, DoS and LDAP attacks. Through special conversion algorithms the PHPIDS is even able to detect heavily obfuscated attacks.

3.0.10(7y ago)28.8k1GPL-2.0-or-laterPHP

Since Jan 15Pushed 7y ago10 watchersCompare

[ Source](https://github.com/DMKEBUSINESSGMBH/typo3-mkphpids)[ Packagist](https://packagist.org/packages/dmk/mkphpids)[ Docs](http://www.dmk-ebusiness.de/)[ RSS](/packages/dmk-mkphpids/feed)WikiDiscussions master Synced 2d ago

READMEChangelog (1)Dependencies (3)Versions (26)Used By (1)

mkphpids
========

[](#mkphpids)

**NOTE: This extension is abandoned as the development of PHPIDS was abandoned as well a long time ago. So no Support for TYPO3 9.5 and later versions will be added. If you're interested in more security in your TYPO3 environments you should check out [mksanitizedparameters](https://github.com/DMKEBUSINESSGMBH/typo3-mksanitizedparameters)which prevents most attacks in the first place by sanitizing incoming request parameters making it harder for attackers.**

[Administration](Documentation/Administration/Index.md)

[Configuration](Documentation/Configuration/Index.md)

[UsersManual](Documentation/UsersManual/Index.md)

[ChangeLog](Documentation/ChangeLog/Index.md)

What does it do?
----------------

[](#what-does-it-do)

Adding a PHP Intrusion Detection System from  to your TYPO3 Website.

This extension is a fork of px\_phpids with more features and TYPO3 6.2, 7.6 and 8.7 support. So thanx for the development of px\_phpids.

Features
--------

[](#features)

Quote from the Author of PHPIDS:

“PHPIDS (PHP-Intrusion Detection System) is a simple to use, well structured, fast and state-of-the-art security layer for your PHP based web application. The IDS neither strips, sanitizes nor filters any malicious input, it simply recognizes when an attacker tries to break your site and reacts in exactly the way you want it to. Based on a set of approved and heavily tested filter rules any attack is given a numerical impact rating which makes it easy to decide what kind of action should follow the hacking attempt. This could range from simple logging to sending out an emergency mail to the development team, displaying a warning message for the attacker or even ending the user’s session.

PHPIDS enables you to see who’s attacking your site and how and all without the tedious trawling of logfiles or searching hacker forums for your domain. Last but not least it’s licensed under the LGPL!”

On their site you can find a collection of resources related to PHPIDS. These including files, documentation, a friendly forum and a demo which shows some of the best features of PHPIDS.

Screenshots
-----------

[](#screenshots)

[![](Documentation/Images/BackendModule.png)](Documentation/Images/BackendModule.png)

The backend module.

###  Health Score

36

—

LowBetter than 79% of packages

Maintenance20

Infrequent updates — may be unmaintained

Popularity21

Limited adoption so far

Community19

Small or concentrated contributor base

Maturity73

Established project with proven stability

 Bus Factor1

Top contributor holds 59.7% of commits — single point of failure

How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window.

**Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores.

**Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement.

**Maturity (30%)** — Project age, version count, PHP version support, and release stability.

###  Release Activity

Cadence

Every ~57 days

Recently: every ~36 days

Total

26

Last Release

2753d ago

Major Versions

1.5.11 → 2.0.02016-05-11

2.0.6 → 3.0.02017-05-11

### Community

Maintainers

![](https://avatars.githubusercontent.com/u/5131653?v=4)[Michael Wagner](/maintainers/rengaw83)[@rengaw83](https://github.com/rengaw83)

![](https://www.gravatar.com/avatar/b0f42c674d10d07667556ec6a435fd657236977083564418d83df8790cafe0ed?d=identicon)[dmkbot](/maintainers/dmkbot)

![](https://www.gravatar.com/avatar/33e7d05adb80175dc82fc55b499e1d17d6252f45a3de0dc5a314181568f54f69?d=identicon)[hannesbochmann](/maintainers/hannesbochmann)

---

Top Contributors

[![hannesbochmann](https://avatars.githubusercontent.com/u/6302628?v=4)](https://github.com/hannesbochmann "hannesbochmann (89 commits)")[![hbochmann](https://avatars.githubusercontent.com/u/873161?v=4)](https://github.com/hbochmann "hbochmann (31 commits)")[![rengaw83](https://avatars.githubusercontent.com/u/5131653?v=4)](https://github.com/rengaw83 "rengaw83 (28 commits)")[![darthnorman](https://avatars.githubusercontent.com/u/628835?v=4)](https://github.com/darthnorman "darthnorman (1 commits)")

---

Tags

xssTYPO3 CMSSQL Injectionphpids

### Embed Badge

![Health badge](/badges/dmk-mkphpids/health.svg)

```
[![Health](https://phpackages.com/badges/dmk-mkphpids/health.svg)](https://phpackages.com/packages/dmk-mkphpids)
```

###  Alternatives

[mews/purifier

Laravel 5/6/7/8/9/10 HtmlPurifier Package

2.0k18.7M141](/packages/mews-purifier)[voku/anti-xss

anti xss-library

72817.9M90](/packages/voku-anti-xss)[akaunting/laravel-firewall

Web Application Firewall (WAF) package for Laravel

1.0k508.9k2](/packages/akaunting-laravel-firewall)[masterro/laravel-xss-filter

Filter user input for XSS but don't touch other html

41273.5k](/packages/masterro-laravel-xss-filter)[frozennode/xssinput

A simple extension of the Laravel Input facade that mimics CodeIgniter's xss filtering

3968.8k](/packages/frozennode-xssinput)[derhansen/form_crshield

Challenge/response spambot protection for ext:form - Challenge/response spambot protection for TYPO3 ext:form - Adds a hidden input field containing a challenge string to forms. Client must execute included JavaScript to calculate the expected response.

20241.7k10](/packages/derhansen-form-crshield)

PHPackages © 2026

[Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)
