ThreatDetector-0.01

Modules

Threat classification engine for parsed Apache log entries

Routes classified threats to their appropriate handler modules

Handler for scanner and bot user-agent matches

Handler for HTTP 4xx client errors

Handler for command injection/RFI/LFI attempts

Handler for directory traversal attempts

Handler for encoded payload attempts

Handler for suspicious or abusive HTTP headers

Handler for login brute-force attempts

Handler for abuse of uncommon or dangerous HTTP methods

Detects rate-based abuse by tracking burst activity

Handler for SQL injection attempts

Handler for cross-site scripting (XSS) attempts

Apache log parser for threat detection

Summary report generator for classified threat events

Modular Apache log threat detection toolkit

To install ThreatDetector, copy and paste the appropriate command in to your terminal.

cpanm ThreatDetector

perl -MCPAN -e shell
install ThreatDetector

For more information on module installation, please visit the detailed CPAN module installation guide.

	Global
`s`	Focus search bar
`?`	Bring up this help dialog

	GitHub
`g` `p`	Go to pull requests
`g` `i`	go to github issues (only if github is preferred repository)

	Search terms
module: (e.g. module:Plugin)
distribution: (e.g. distribution:Dancer auth)
author: (e.g. author:SONGMU Redis)
version: (e.g. version:1.00)