Trang chủ Khám phá Trợ giúp
Đăng nhập
titan
/
noride
10
0
Fork 0
Các tập tin Các vấn đề 0 Yêu cầu khéo về 0 Wiki
Branch: master
Branches Tags
noride
/
noridecrm
/
admin
/
backend
/
config
/
360webscan.php

360webscan.php 5.3 KB
Permalink Lịch sử Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131 
  1. <?php
    2. 

  2. webscan_error();
    3. 

  3. //拦截开关(1为开启,0关闭)
    4. 

  4. $webscan_switch=1;
    5. 

  5. //提交方式拦截(1开启拦截,0关闭拦截,post,get,cookie,referre选择需要拦截的方式)
    6. 

  6. $webscan_post=1;
    7. 

  7. $webscan_get=1;
    8. 

  8. $webscan_cookie=1;
    9. 

  9. $webscan_referre=1;
    10. 

  10. //后台白名单,后台操作将不会拦截,添加"|"隔开白名单目录下面默认是网址带 admin  /dede/ 放行
    11. 

  11. $webscan_white_directory='admin|\/dede\/';
    12. 

  12. //url白名单,可以自定义添加url白名单,默认是对phpcms的后台url放行
    13. 

  13. //写法:比如phpcms 后台操作url index.php?m=admin php168的文章提交链接post.php?job=postnew&step=post ,dedecms 空间设置edit_space_info.php
    14. 

  14. $webscan_white_url = array('index.php' => 'm=admin','post.php' => 'job=postnew&step=post','edit_space_info.php'=>'');
    15. 

  15. //防护脚本版本号
    16. 

  16. define("WEBSCAN_VERSION", '0.1.3.2');
    17. 

  17. //get拦截规则
    18. 

  18. $getfilter = "\\<.+javascript:window\\[.{1}\\\\x|<.*=(&#\\d+?;?)+?>|<.*(data|src)=data:text\\/html.*>|\\b(alert\\(|confirm\\(|expression\\(|prompt\\(|benchmark\s*?\(.*\)|sleep\s*?\(.*\)|load_file\s*?\\()|<[a-z]+?\\b[^>]*?\\bon([a-z]{4,})\s*?=|^\\+\\/v(8|9)|\\b(and|or)\\b\\s*?([\\(\\)'\"\\d]+?=[\\(\\)'\"\\d]+?|[\\(\\)'\"a-zA-Z]+?=[\\(\\)'\"a-zA-Z]+?|>|<|\s+?[\\w]+?\\s+?\\bin\\b\\s*?\(|\\blike\\b\\s+?[\"'])|\\/\\*.*\\*\\/|<\\s*script\\b|\\bEXEC\\b|UNION.+?SELECT\s*(\(.+\)\s*|@{1,2}.+?\s*|\s+?.+?|(`|'|\").*?(`|'|\")\s*)|UPDATE\s*(\(.+\)\s*|@{1,2}.+?\s*|\s+?.+?|(`|'|\").*?(`|'|\")\s*)SET|INSERT\\s+INTO.+?VALUES|(SELECT|DELETE)@{0,2}(\\(.+\\)|\\s+?.+?\\s+?|(`|'|\").*?(`|'|\"))FROM(\\(.+\\)|\\s+?.+?|(`|'|\").*?(`|'|\"))|(CREATE|ALTER|DROP|TRUNCATE)\\s+(TABLE|DATABASE)";
    19. 

  19. //post拦截规则
    20. 

  20. $postfilter = "<.*=(&#\\d+?;?)+?>|<.*data=data:text\\/html.*>|\\b(alert\\(|confirm\\(|expression\\(|prompt\\(|benchmark\s*?\(.*\)|sleep\s*?\(.*\)|load_file\s*?\\()|<[^>]*?\\b(onerror|onmousemove|onload|onclick|onmouseover)\\b|\\b(and|or)\\b\\s*?([\\(\\)'\"\\d]+?=[\\(\\)'\"\\d]+?|[\\(\\)'\"a-zA-Z]+?=[\\(\\)'\"a-zA-Z]+?|>|<|\s+?[\\w]+?\\s+?\\bin\\b\\s*?\(|\\blike\\b\\s+?[\"'])|\\/\\*.*\\*\\/|<\\s*script\\b|\\bEXEC\\b|UNION.+?SELECT\s*(\(.+\)\s*|@{1,2}.+?\s*|\s+?.+?|(`|'|\").*?(`|'|\")\s*)|UPDATE\s*(\(.+\)\s*|@{1,2}.+?\s*|\s+?.+?|(`|'|\").*?(`|'|\")\s*)SET|INSERT\\s+INTO.+?VALUES|(SELECT|DELETE)(\\(.+\\)|\\s+?.+?\\s+?|(`|'|\").*?(`|'|\"))FROM(\\(.+\\)|\\s+?.+?|(`|'|\").*?(`|'|\"))|(CREATE|ALTER|DROP|TRUNCATE)\\s+(TABLE|DATABASE)";
    21. 

  21. //cookie拦截规则
    22. 

  22. $cookiefilter = "benchmark\s*?\(.*\)|sleep\s*?\(.*\)|load_file\s*?\\(|\\b(and|or)\\b\\s*?([\\(\\)'\"\\d]+?=[\\(\\)'\"\\d]+?|[\\(\\)'\"a-zA-Z]+?=[\\(\\)'\"a-zA-Z]+?|>|<|\s+?[\\w]+?\\s+?\\bin\\b\\s*?\(|\\blike\\b\\s+?[\"'])|\\/\\*.*\\*\\/|<\\s*script\\b|\\bEXEC\\b|UNION.+?SELECT\s*(\(.+\)\s*|@{1,2}.+?\s*|\s+?.+?|(`|'|\").*?(`|'|\")\s*)|UPDATE\s*(\(.+\)\s*|@{1,2}.+?\s*|\s+?.+?|(`|'|\").*?(`|'|\")\s*)SET|INSERT\\s+INTO.+?VALUES|(SELECT|DELETE)@{0,2}(\\(.+\\)|\\s+?.+?\\s+?|(`|'|\").*?(`|'|\"))FROM(\\(.+\\)|\\s+?.+?|(`|'|\").*?(`|'|\"))|(CREATE|ALTER|DROP|TRUNCATE)\\s+(TABLE|DATABASE)";
    23. 

  23. //referer获取
    24. 

  24. $webscan_referer = empty($_SERVER['HTTP_REFERER']) ? array() : array('HTTP_REFERER'=>$_SERVER['HTTP_REFERER']);
    25. 

  25. 

  26. /**
    27. 

  27.  *   关闭用户错误提示
    28. 

  28.  */
    29. 

  29. function webscan_error() {
    30. 

  30.   if (ini_get('display_errors')) {
    31. 

  31.     ini_set('display_errors', '0');
    32. 

  32.   }
    33. 

  33. }
    34. 

  34. 

  35. /**
    36. 

  36.  *  参数拆分
    37. 

  37.  */
    38. 

  38. function webscan_arr_foreach($arr) {
    39. 

  39.   static $str;
    40. 

  40.   static $keystr;
    41. 

  41.   if (!is_array($arr)) {
    42. 

  42.     return $arr;
    43. 

  43.   }
    44. 

  44.   foreach ($arr as $key => $val ) {
    45. 

  45.     $keystr=$keystr.$key;
    46. 

  46.     if (is_array($val)) {
    47. 

  47. 

  48.       webscan_arr_foreach($val);
    49. 

  49.     } else {
    50. 

  50. 

  51.       $str[] = $val.$keystr;
    52. 

  52.     }
    53. 

  53.   }
    54. 

  54.   return implode($str);
    55. 

  55. }
    56. 

  56. 

  57. /**
    58. 

  58.  *  防护提示页
    59. 

  59.  */
    60. 

  60. function webscan_pape(){
    61. 

  61.   $pape=<<<HTML
    62. 

  62.   <html>
    63. 

  63.   <body style="margin:0; padding:0">
    64. 

  64.   <h1>Bad Request</h1>
    65. 

  65.   </body>
    66. 

  66.   </html>
    67. 

  67. HTML;
    68. 

  68.   echo $pape;
    69. 

  69. }
    70. 

  70. 

  71. /**
    72. 

  72.  *  攻击检查拦截
    73. 

  73.  */
    74. 

  74. function webscan_StopAttack($StrFiltKey,$StrFiltValue,$ArrFiltReq,$method) {
    75. 

  75.   $StrFiltValue=webscan_arr_foreach($StrFiltValue);
    76. 

  76.   if (preg_match("/".$ArrFiltReq."/is",$StrFiltValue)==1){
    77. 

  77.     exit(webscan_pape());
    78. 

  78.   }
    79. 

  79.   if (preg_match("/".$ArrFiltReq."/is",$StrFiltKey)==1){
    80. 

  80.     exit(webscan_pape());
    81. 

  81.   }
    82. 

  82. 

  83. }
    84. 

  84. /**
    85. 

  85.  *  拦截目录白名单
    86. 

  86.  */
    87. 

  87. function webscan_white($webscan_white_name,$webscan_white_url=array()) {
    88. 

  88.   $url_path=$_SERVER['SCRIPT_NAME'];
    89. 

  89.   $url_var=$_SERVER['QUERY_STRING'];
    90. 

  90.   if (preg_match("/".$webscan_white_name."/is",$url_path)==1&&!empty($webscan_white_name)) {
    91. 

  91.     return false;
    92. 

  92.   }
    93. 

  93.   foreach ($webscan_white_url as $key => $value) {
    94. 

  94.     if(!empty($url_var)&&!empty($value)){
    95. 

  95.       if (stristr($url_path,$key)&&stristr($url_var,$value)) {
    96. 

  96.         return false;
    97. 

  97.       }
    98. 

  98.     }
    99. 

  99.     elseif (empty($url_var)&&empty($value)) {
    100. 

  100.       if (stristr($url_path,$key)) {
    101. 

  101.         return false;
    102. 

  102.       }
    103. 

  103.     }
    104. 

  104. 

  105.   }
    106. 

  106. 

  107.   return true;
    108. 

  108. }
    109. 

  109. 

  110. if ($webscan_switch&&webscan_white($webscan_white_directory,$webscan_white_url)) {
    111. 

  111.   if ($webscan_get) {
    112. 

  112.     foreach($_GET as $key=>$value) {
    113. 

  113.       webscan_StopAttack($key,$value,$getfilter,"GET");
    114. 

  114.     }
    115. 

  115.   }
    116. 

  116.   if ($webscan_post) {
    117. 

  117.     foreach($_POST as $key=>$value) {
    118. 

  118.       webscan_StopAttack($key,$value,$postfilter,"POST");
    119. 

  119.     }
    120. 

  120.   }
    121. 

  121.   if ($webscan_cookie) {
    122. 

  122.     foreach($_COOKIE as $key=>$value) {
    123. 

  123.       webscan_StopAttack($key,$value,$cookiefilter,"COOKIE");
    124. 

  124.     }
    125. 

  125.   }
    126. 

  126.   if ($webscan_referre) {
    127. 

  127.     foreach($webscan_referer as $key=>$value) {
    128. 

  128.       webscan_StopAttack($key,$value,$postfilter,"REFERRER");
    129. 

  129.     }
    130. 

  130.   }
    131. 

  131. }
    132.