Text
This is the place to start customizing or add rules that do not belong elsewhere
Goal
Easy to add new rules without having to touch the existing. Also a great place to test out new rules
Enabled
Enable or disable this wire
Methods
The methods specifies which methods should be inspected
Options:
- 'post'
- 'put'
- 'patch'
- 'get'
- 'all' or '*'
The 'all' or '*' is a alias to inspect all methods
php
->methods(['post', 'put']) // only post and put methodphp
->methods(['*']) // all methodsAttack score
This is this wire severity, the higher the number the more severe. All attackScores will be summarized and if it exceeds the PunishScore the block will be activated. Set this to a number that reflects the severity.
- A very high number will immediately block the user/ip
- A low number will only block if there are many requests
TIP
sqli and xss are very common attack vectors with high confidence detection. You should set those to a very high number
Tripwires
Specify the list of words that should be forbidden
Example
php
WireDetailsConfig::make()
->enabled(true)
->methods(['*'])
->tripwires(Regex::injectFillers([
"#example.malicious#iUu"
])
);
//... optional overrides