PHPackages emscherland/phpids - PHPackages - PHPackages [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register) 1. [Directory](/) 2. / 3. [Security](/categories/security) 4. / 5. emscherland/phpids ActiveLibrary[Security](/categories/security) emscherland/phpids ================== PHPIDS (PHP-Intrusion Detection System) is a simple to use, well structured, fast and state-of-the-art security layer for your PHP based web application v2.0.1(1y ago)220011LGPL-3.0+PHPPHP ^8.3 Since Sep 25Pushed 1y agoCompare [ Source](https://github.com/Emscherland/PHPIDS)[ Packagist](https://packagist.org/packages/emscherland/phpids)[ Docs](https://github.com/Emscherland/PHPIDS)[ RSS](/packages/emscherland-phpids/feed)WikiDiscussions main Synced 5d ago READMEChangelog (4)Dependencies (2)Versions (8)Used By (1) [![tests](https://github.com/Emscherland/PHPIDS/actions/workflows/tests.yml/badge.svg)](https://github.com/Emscherland/PHPIDS/actions/workflows/tests.yml)[![Latest Stable Version](https://camo.githubusercontent.com/ec436b5d5e1aa0e9833f3f3ab605cf0290b642413c4a47e534935892e86b2584/68747470733a2f2f696d672e736869656c64732e696f2f7061636b61676973742f762f656d73636865726c616e642f706870696473)](https://packagist.org/packages/emscherland/phpids)![PHP Version](https://camo.githubusercontent.com/fde7de2bc923cbf6c6aacf63dc79f573dd74b05b07812432f7eb64e5edfb9afe/68747470733a2f2f696d672e736869656c64732e696f2f7061636b61676973742f646570656e64656e63792d762f656d73636865726c616e642f7068706964732f7068703f7365727665723d68747470732533412532462532467061636b61676973742e6f7267266c6162656c3d504850)[![License](https://camo.githubusercontent.com/0c8199e7bb27f21bf7bdbf009b04d6a364b363175ddd0afea48c5484dcc94167/68747470733a2f2f696d672e736869656c64732e696f2f7061636b61676973742f6c2f656d73636865726c616e642f706870696473)](https://packagist.org/packages/emscherland/phpids) PHPIDS ====== [](#phpids) PHPIDS (PHP-Intrusion Detection System) is a simple to use, well structured, fast and state-of-the-art security layer for your PHP based web application. The IDS **neither strips, sanitizes nor filters any malicious input**, it simply recognizes when an attacker tries to break your site and reacts in exactly the way you want it to. Based on a set of approved and heavily tested filter rules any attack is given a numerical impact rating which makes it easy to decide what kind of action should follow the hacking attempt. This could range from simple logging to sending out an emergency mail to the development team, displaying a warning message for the attacker or even ending the user’s session. PHPIDS enables you to see who’s attacking your site and how and all without the tedious trawling of logfiles or searching hacker forums for your domain. Last but not least it’s licensed under the fair LGPL! Installation ------------ [](#installation) ``` composer require emscherland/phpids ``` Contributions ------------- [](#contributions) If you would like to contribute, please open a pull request. If you need something to do, have a look at our [open issues](https://github.com/Emscherland/PHPIDS/issues). Credits ------- [](#credits) This Package is forked from the original PHPIDS that is no longer maintained and that is lacking support for modern PHP. The Credits originally contained the following: The project was started by Christian Matthies and Mario Heiderich . Mario spend a lot of time maintaining PHPIDS mostly on his own. Huge props for that. Currently Lars Strojny merges pull requests. ### An incomplete list of contributors: [](#an-incomplete-list-of-contributors) - **LeverOne** for his outstanding work, testing and XSS vectors from the depths of markup hell - [Kishor](http://wasjournal.blogspot.com/) for providing cutting edge XSS and great help in the group - [Martin Hinks](http://www.the-mice.co.uk/switch/) for great hints, the .NETIDS and help with false positives - [SirDarckCat](http://sirdarckcat.blogspot.com) for providing XSS so advanced it made us shiver - [Gareth Heyes](http://thespanner.co.uk/) for his help enhancing the rules and very creative XSS vectors - **Kevin Schroeder** for the audit and great help on testing and enhancing the PHPIDS - **xorrer** for his help optimizing the rules against his cryptic and sophisticated XSS vectors - [Johannes Dahse](http://websec.wordpress.com/) for his help optimizing the SQLI rules - [Roberto Salgado](http://websec.ca/) for helping hardening the SQLI rules with his SQL-Fu - [tx](http://lowtechlive.com/) for even more outstanding SQLI stuff and almost magic PHP code injection vectors - [Giorgio Maone](http://hackademix.net/) for redefining the word JavaScript with his vectors - [thornmaker](http://p42.us/) for submitting smart and very hard to detect JavaScript concatenation vectors - [Martin Trauth](http://www.pix7.de/blog/) for helping us with the design and giving hints on estate usability - [Ronald v.d. Heetkamp](http://0x000000.com/) for helping on the SQLI and XSS detection issues - **Dan** for helping i18n-ing the PHPIDS - **CrYpTiC\_MauleR** for providing great hints and XSS magic - [Robert Hansen](http://www.ha.ckers.org/) for providing (sl|h)a.ckers.org and the XSS cheat sheet - [beford](http://blog.beford.org/) for providing great hints and esoteric but working XSS ### Health Score 39 — LowBetter than 86% of packages Maintenance34 Infrequent updates — may be unmaintained Popularity16 Limited adoption so far Community20 Small or concentrated contributor base Maturity74 Established project with proven stability Bus Factor1 Top contributor holds 79.7% of commits — single point of failure How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window. **Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores. **Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement. **Maturity (30%)** — Project age, version count, PHP version support, and release stability. ### Release Activity Cadence Every ~239 days Recently: every ~355 days Total 7 Last Release 620d ago Major Versions v1.3.0 → v2.0.02024-09-02 PHP version history (4 changes)v1.0.0PHP >=7.4.0 v1.1.0PHP >=7.4.11 v1.2.0PHP ^8.0 v1.3.0PHP ^8.3 ### Community Maintainers ![](https://www.gravatar.com/avatar/0f5051dcc0b49ec031293b5a8b6b1cc79d1919aa8afe506c56ff2f1494dfb942?d=identicon)[emscherland](/maintainers/emscherland) ![](https://www.gravatar.com/avatar/3988bcd674c8583e1f7991a9ea5049cc957b177104beea92487067ddc04f45e0?d=identicon)[thataf](/maintainers/thataf) --- Top Contributors [![x00mario](https://avatars.githubusercontent.com/u/615569?v=4)](https://github.com/x00mario "x00mario (885 commits)")[![lstrojny](https://avatars.githubusercontent.com/u/79707?v=4)](https://github.com/lstrojny "lstrojny (184 commits)")[![ThatBea](https://avatars.githubusercontent.com/u/55582478?v=4)](https://github.com/ThatBea "ThatBea (19 commits)")[![jayzeng](https://avatars.githubusercontent.com/u/141891?v=4)](https://github.com/jayzeng "jayzeng (8 commits)")[![kingcrunch](https://avatars.githubusercontent.com/u/90388?v=4)](https://github.com/kingcrunch "kingcrunch (6 commits)")[![staabm](https://avatars.githubusercontent.com/u/120441?v=4)](https://github.com/staabm "staabm (2 commits)")[![Awnage](https://avatars.githubusercontent.com/u/368749?v=4)](https://github.com/Awnage "Awnage (1 commits)")[![zanbaldwin](https://avatars.githubusercontent.com/u/123245?v=4)](https://github.com/zanbaldwin "zanbaldwin (1 commits)")[![benpoulson](https://avatars.githubusercontent.com/u/1797843?v=4)](https://github.com/benpoulson "benpoulson (1 commits)")[![csk83](https://avatars.githubusercontent.com/u/240821?v=4)](https://github.com/csk83 "csk83 (1 commits)")[![felixbuenemann](https://avatars.githubusercontent.com/u/909587?v=4)](https://github.com/felixbuenemann "felixbuenemann (1 commits)")[![marclaporte](https://avatars.githubusercontent.com/u/1004261?v=4)](https://github.com/marclaporte "marclaporte (1 commits)")[![sasezaki](https://avatars.githubusercontent.com/u/42755?v=4)](https://github.com/sasezaki "sasezaki (1 commits)") --- Tags websecurityidsfirewallwafphpids ### Code Quality TestsPHPUnit ### Embed Badge ![Health badge](/badges/emscherland-phpids/health.svg) ``` [![Health](https://phpackages.com/badges/emscherland-phpids/health.svg)](https://phpackages.com/packages/emscherland-phpids) ``` ### Alternatives [akaunting/laravel-firewall Web Application Firewall (WAF) package for Laravel 999465.8k2](/packages/akaunting-laravel-firewall)[ionut/sylar Sylar it's the Intrusion Detection System(IDS) which you can trust! 252.6k](/packages/ionut-sylar) PHPackages © 2026 [Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)