Changeset 1635124
- Timestamp:
- 04/11/2017 08:35:01 AM (9 years ago)
- Location:
- wpblock
- Files:
-
- 3 edited
- 4 copied
-
tags/1.4 (copied) (copied from wpblock/trunk)
-
tags/1.4/README.md (copied) (copied from wpblock/trunk/README.md) (1 diff)
-
tags/1.4/readme.txt (copied) (copied from wpblock/trunk/readme.txt) (1 diff)
-
tags/1.4/wpblock.php (copied) (copied from wpblock/trunk/wpblock.php) (4 diffs)
-
trunk/README.md (modified) (1 diff)
-
trunk/readme.txt (modified) (1 diff)
-
trunk/wpblock.php (modified) (4 diffs)
Legend:
- Unmodified
- Added
- Removed
-
wpblock/tags/1.4/README.md
r1634635 r1635124 58 58 * Fixed a bug which caused error on dashboard when conflicting plugins were installed 59 59 60 = 1.4 = 61 * Added more htaccess security headers 62 * Added more bots, scanners and payloads to block 63 60 64 == Upgrade Notice == 61 65 -
wpblock/tags/1.4/readme.txt
r1634635 r1635124 58 58 * Fixed a bug which caused error on dashboard when conflicting plugins were installed 59 59 60 = 1.4 = 61 * Added more htaccess security headers 62 * Added more bots, scanners and payloads to block 63 60 64 == Upgrade Notice == 61 65 -
wpblock/tags/1.4/wpblock.php
r1634635 r1635124 3 3 Plugin Name: wpblock 4 4 Description: Prevent WPScans on your site, disable this plugin when you are security testing or looking for vulnerabilities! 5 Version: 1. 3.15 Version: 1.4.0 6 6 Author: Evsec 7 7 Author URI: https://evsec.com … … 143 143 //} 144 144 145 //add_filter('wp_xmlrpc_server_class', 'ev_wpblk_wpblock_fake_xmlrpc');146 //class ev_wpblk_wpblock_fake_xmlrpc {147 //function serve_request() {148 //ev_wpblk_registerScanToDb();149 //die();150 //}151 //}145 add_filter('wp_xmlrpc_server_class', 'ev_wpblk_wpblock_fake_xmlrpc'); 146 class ev_wpblk_wpblock_fake_xmlrpc { 147 function serve_request() { 148 ev_wpblk_registerScanToDb(); 149 die(); 150 } 151 } 152 152 153 153 // Remove <meta name="generator" content="WordPress" /> … … 164 164 $exploded = explode("\n", $rules); 165 165 $my_rules = array( 166 // SECURITY HEADERS 167 'Header add X-Frame-Options "SAMEORIGIN"', 168 'Header add X-XSS-Protection "1; mode=block"', 169 'Header add X-Content-Security-Policy "default-src \'self\'"', 170 'Header add X-Content-Type-Options "nosniff"', 171 'Header unset Etag', 172 'Header unset Server', 173 'ServerSignature Off', 174 'Header unset X-Pingback', 175 // CORE WP BLOCK RULES 166 176 'RewriteRule ^readme\.html$ - [R=404,L,NC]', // Disable access to readme.html 167 177 'RewriteRule ^readme\.txt$ - [R=404,L,NC]', // Disable access to readme.txt … … 174 184 'RewriteRule ^wp-config\.php\.save$ index.php?wp_config_enumeration=1 [L]', // wp-config enumeration 175 185 'RewriteRule ^\.wp-config\.php\.swp$ index.php?wp_config_enumeration=1 [L]', 176 'RewriteRule ^wp-config\.php\.swp$ index.php?wp_config_enumeration=1 [L]' 186 'RewriteRule ^wp-config\.php\.swp$ index.php?wp_config_enumeration=1 [L]', 187 // BAD BOTS 188 'RewriteCond %{HTTP_USER_AGENT} ^BlackWidow [OR]', 189 'RewriteCond %{HTTP_USER_AGENT} ^Bot\ mailto:craftbot@yahoo.com [OR]', 190 'RewriteCond %{HTTP_USER_AGENT} ^ChinaClaw [OR]', 191 'RewriteCond %{HTTP_USER_AGENT} ^Custo [OR]', 192 'RewriteCond %{HTTP_USER_AGENT} ^DISCo [OR]', 193 'RewriteCond %{HTTP_USER_AGENT} ^Download\ Demon [OR]', 194 'RewriteCond %{HTTP_USER_AGENT} ^eCatch [OR]', 195 'RewriteCond %{HTTP_USER_AGENT} ^EirGrabber [OR]', 196 'RewriteCond %{HTTP_USER_AGENT} ^EmailSiphon [OR]', 197 'RewriteCond %{HTTP_USER_AGENT} ^EmailWolf [OR]', 198 'RewriteCond %{HTTP_USER_AGENT} ^Express\ WebPictures [OR]', 199 'RewriteCond %{HTTP_USER_AGENT} ^ExtractorPro [OR]', 200 'RewriteCond %{HTTP_USER_AGENT} ^EyeNetIE [OR]', 201 'RewriteCond %{HTTP_USER_AGENT} ^FlashGet [OR]', 202 'RewriteCond %{HTTP_USER_AGENT} ^GetRight [OR]', 203 'RewriteCond %{HTTP_USER_AGENT} ^GetWeb! [OR]', 204 'RewriteCond %{HTTP_USER_AGENT} ^Go!Zilla [OR]', 205 'RewriteCond %{HTTP_USER_AGENT} ^Go-Ahead-Got-It [OR]', 206 'RewriteCond %{HTTP_USER_AGENT} ^GrabNet [OR]', 207 'RewriteCond %{HTTP_USER_AGENT} ^Grafula [OR]', 208 'RewriteCond %{HTTP_USER_AGENT} ^HMView [OR]', 209 'RewriteCond %{HTTP_USER_AGENT} HTTrack [NC,OR]', 210 'RewriteCond %{HTTP_USER_AGENT} ^Image\ Stripper [OR]', 211 'RewriteCond %{HTTP_USER_AGENT} ^Image\ Sucker [OR]', 212 'RewriteCond %{HTTP_USER_AGENT} Indy\ Library [NC,OR]', 213 'RewriteCond %{HTTP_USER_AGENT} ^InterGET [OR]', 214 'RewriteCond %{HTTP_USER_AGENT} ^Internet\ Ninja [OR]', 215 'RewriteCond %{HTTP_USER_AGENT} ^JetCar [OR]', 216 'RewriteCond %{HTTP_USER_AGENT} ^JOC\ Web\ Spider [OR]', 217 'RewriteCond %{HTTP_USER_AGENT} ^larbin [OR]', 218 'RewriteCond %{HTTP_USER_AGENT} ^LeechFTP [OR]', 219 'RewriteCond %{HTTP_USER_AGENT} ^Mass\ Downloader [OR]', 220 'RewriteCond %{HTTP_USER_AGENT} ^MIDown\ tool [OR]', 221 'RewriteCond %{HTTP_USER_AGENT} ^Mister\ PiX [OR]', 222 'RewriteCond %{HTTP_USER_AGENT} ^Navroad [OR]', 223 'RewriteCond %{HTTP_USER_AGENT} ^NearSite [OR]', 224 'RewriteCond %{HTTP_USER_AGENT} ^NetAnts [OR]', 225 'RewriteCond %{HTTP_USER_AGENT} ^NetSpider [OR]', 226 'RewriteCond %{HTTP_USER_AGENT} ^Net\ Vampire [OR]', 227 'RewriteCond %{HTTP_USER_AGENT} ^NetZIP [OR]', 228 'RewriteCond %{HTTP_USER_AGENT} ^Octopus [OR]', 229 'RewriteCond %{HTTP_USER_AGENT} ^Offline\ Explorer [OR]', 230 'RewriteCond %{HTTP_USER_AGENT} ^Offline\ Navigator [OR]', 231 'RewriteCond %{HTTP_USER_AGENT} ^PageGrabber [OR]', 232 'RewriteCond %{HTTP_USER_AGENT} ^Papa\ Foto [OR]', 233 'RewriteCond %{HTTP_USER_AGENT} ^pavuk [OR]', 234 'RewriteCond %{HTTP_USER_AGENT} ^pcBrowser [OR]', 235 'RewriteCond %{HTTP_USER_AGENT} ^RealDownload [OR]', 236 'RewriteCond %{HTTP_USER_AGENT} ^ReGet [OR]', 237 'RewriteCond %{HTTP_USER_AGENT} ^SiteSnagger [OR]', 238 'RewriteCond %{HTTP_USER_AGENT} ^SmartDownload [OR]', 239 'RewriteCond %{HTTP_USER_AGENT} ^SuperBot [OR]', 240 'RewriteCond %{HTTP_USER_AGENT} ^SuperHTTP [OR]', 241 'RewriteCond %{HTTP_USER_AGENT} ^Surfbot [OR]', 242 'RewriteCond %{HTTP_USER_AGENT} ^tAkeOut [OR]', 243 'RewriteCond %{HTTP_USER_AGENT} ^WWW-Mechanize [OR]', 244 'RewriteCond %{HTTP_USER_AGENT} ^Teleport\ Pro [OR]', 245 'RewriteCond %{HTTP_USER_AGENT} ^VoidEYE [OR]', 246 'RewriteCond %{HTTP_USER_AGENT} ^Web\ Image\ Collector [OR]', 247 'RewriteCond %{HTTP_USER_AGENT} ^Web\ Sucker [OR]', 248 'RewriteCond %{HTTP_USER_AGENT} ^WebAuto [OR]', 249 'RewriteCond %{HTTP_USER_AGENT} ^WebCopier [OR]', 250 'RewriteCond %{HTTP_USER_AGENT} ^WebFetch [OR]', 251 'RewriteCond %{HTTP_USER_AGENT} ^WebGo\ IS [OR]', 252 'RewriteCond %{HTTP_USER_AGENT} ^WebLeacher [OR]', 253 'RewriteCond %{HTTP_USER_AGENT} ^WebReaper [OR]', 254 'RewriteCond %{HTTP_USER_AGENT} ^WebSauger [OR]', 255 'RewriteCond %{HTTP_USER_AGENT} ^Website\ eXtractor [OR]', 256 'RewriteCond %{HTTP_USER_AGENT} ^Website\ Quester [OR]', 257 'RewriteCond %{HTTP_USER_AGENT} ^WebStripper [OR]', 258 'RewriteCond %{HTTP_USER_AGENT} ^WebWhacker [OR]', 259 'RewriteCond %{HTTP_USER_AGENT} ^WebZIP [OR]', 260 'RewriteCond %{HTTP_USER_AGENT} ^Widow [OR]', 261 'RewriteCond %{HTTP_USER_AGENT} ^WWWOFFLE [OR]', 262 'RewriteCond %{HTTP_USER_AGENT} ^Xaldon\ WebSpider [OR]', 263 'RewriteCond %{HTTP_USER_AGENT} ^Toata\ dragostea\ mea\ pentru\ diavola [OR]', 264 'RewriteCond %{HTTP_USER_AGENT} ^Mozilla/5.0\ SF [OR]', 265 'RewriteCond %{HTTP_USER_AGENT} ^Zeus [OR]', 266 // SCANNER PROTECTION 267 'RewriteCond %{HTTP_USER_AGENT} ^w3af.sourceforge.net [NC,OR]', 268 'RewriteCond %{HTTP_USER_AGENT} dirbuster [NC,OR]', 269 'RewriteCond %{HTTP_USER_AGENT} nikto [NC,OR]', 270 'RewriteCond %{HTTP_USER_AGENT} sqlmap [NC,OR]', 271 'RewriteCond %{HTTP_USER_AGENT} fimap [NC,OR]', 272 'RewriteCond %{HTTP_USER_AGENT} nessus [NC,OR]', 273 'RewriteCond %{HTTP_USER_AGENT} whatweb [NC,OR]', 274 'RewriteCond %{HTTP_USER_AGENT} Openvas [NC,OR]', 275 'RewriteCond %{HTTP_USER_AGENT} jbrofuzz [NC,OR]', 276 'RewriteCond %{HTTP_USER_AGENT} libwhisker [NC,OR]', 277 'RewriteCond %{HTTP_USER_AGENT} webshag [NC,OR]', 278 'RewriteCond %{HTTP_USER_AGENT} (havij|Netsparker|libwww-perl|python|nikto|curl|scan|java|winhttp|clshttp|loader) [NC,OR]', 279 'RewriteCond %{HTTP_USER_AGENT} (%0A|%0D|%27|%3C|%3E|%00) [NC,OR]', 280 'RewriteCond %{HTTP_USER_AGENT} (;|<|>|\'|"|\)|\(|%0A|%0D|%22|%27|%28|%3C|%3E|%00).*(libwww-perl|python|nikto|curl|scan|java|winhttp|HTTrack|clshttp|archiver|loader|email|harvest|extract|grab|miner) [NC,OR]', 281 'RewriteCond %{HTTP:Acunetix-Product} ^WVS', 282 'RewriteCond %{REQUEST_URI} (<|%3C)([^s]*s)+cript.*(>|%3E) [NC,OR]', 283 'RewriteCond %{REQUEST_URI} (<|%3C)([^e]*e)+mbed.*(>|%3E) [NC,OR]', 284 'RewriteCond %{REQUEST_URI} (<|%3C)([^o]*o)+bject.*(>|%3E) [NC,OR]', 285 'RewriteCond %{REQUEST_URI} (<|%3C)([^i]*i)+frame.*(>|%3E) [NC,OR]', 286 'RewriteCond %{REQUEST_URI} base64_(en|de)code[^(]*\([^)]*\) [NC,OR]', 287 'RewriteCond %{REQUEST_URI} (%0A|%0D|\\r|\\n) [NC,OR]', 288 'RewriteCond %{REQUEST_URI} union([^a]*a)+ll([^s]*s)+elect [NC]', 289 'RewriteRule ^(.*)$ index.php?bad_traffic=1 [R=301,L]' 177 290 ); 178 291 array_splice( $exploded, 3, 0, $my_rules ); -
wpblock/trunk/README.md
r1634635 r1635124 58 58 * Fixed a bug which caused error on dashboard when conflicting plugins were installed 59 59 60 = 1.4 = 61 * Added more htaccess security headers 62 * Added more bots, scanners and payloads to block 63 60 64 == Upgrade Notice == 61 65 -
wpblock/trunk/readme.txt
r1634635 r1635124 58 58 * Fixed a bug which caused error on dashboard when conflicting plugins were installed 59 59 60 = 1.4 = 61 * Added more htaccess security headers 62 * Added more bots, scanners and payloads to block 63 60 64 == Upgrade Notice == 61 65 -
wpblock/trunk/wpblock.php
r1634635 r1635124 3 3 Plugin Name: wpblock 4 4 Description: Prevent WPScans on your site, disable this plugin when you are security testing or looking for vulnerabilities! 5 Version: 1. 3.15 Version: 1.4.0 6 6 Author: Evsec 7 7 Author URI: https://evsec.com … … 143 143 //} 144 144 145 //add_filter('wp_xmlrpc_server_class', 'ev_wpblk_wpblock_fake_xmlrpc');146 //class ev_wpblk_wpblock_fake_xmlrpc {147 //function serve_request() {148 //ev_wpblk_registerScanToDb();149 //die();150 //}151 //}145 add_filter('wp_xmlrpc_server_class', 'ev_wpblk_wpblock_fake_xmlrpc'); 146 class ev_wpblk_wpblock_fake_xmlrpc { 147 function serve_request() { 148 ev_wpblk_registerScanToDb(); 149 die(); 150 } 151 } 152 152 153 153 // Remove <meta name="generator" content="WordPress" /> … … 164 164 $exploded = explode("\n", $rules); 165 165 $my_rules = array( 166 // SECURITY HEADERS 167 'Header add X-Frame-Options "SAMEORIGIN"', 168 'Header add X-XSS-Protection "1; mode=block"', 169 'Header add X-Content-Security-Policy "default-src \'self\'"', 170 'Header add X-Content-Type-Options "nosniff"', 171 'Header unset Etag', 172 'Header unset Server', 173 'ServerSignature Off', 174 'Header unset X-Pingback', 175 // CORE WP BLOCK RULES 166 176 'RewriteRule ^readme\.html$ - [R=404,L,NC]', // Disable access to readme.html 167 177 'RewriteRule ^readme\.txt$ - [R=404,L,NC]', // Disable access to readme.txt … … 174 184 'RewriteRule ^wp-config\.php\.save$ index.php?wp_config_enumeration=1 [L]', // wp-config enumeration 175 185 'RewriteRule ^\.wp-config\.php\.swp$ index.php?wp_config_enumeration=1 [L]', 176 'RewriteRule ^wp-config\.php\.swp$ index.php?wp_config_enumeration=1 [L]' 186 'RewriteRule ^wp-config\.php\.swp$ index.php?wp_config_enumeration=1 [L]', 187 // BAD BOTS 188 'RewriteCond %{HTTP_USER_AGENT} ^BlackWidow [OR]', 189 'RewriteCond %{HTTP_USER_AGENT} ^Bot\ mailto:craftbot@yahoo.com [OR]', 190 'RewriteCond %{HTTP_USER_AGENT} ^ChinaClaw [OR]', 191 'RewriteCond %{HTTP_USER_AGENT} ^Custo [OR]', 192 'RewriteCond %{HTTP_USER_AGENT} ^DISCo [OR]', 193 'RewriteCond %{HTTP_USER_AGENT} ^Download\ Demon [OR]', 194 'RewriteCond %{HTTP_USER_AGENT} ^eCatch [OR]', 195 'RewriteCond %{HTTP_USER_AGENT} ^EirGrabber [OR]', 196 'RewriteCond %{HTTP_USER_AGENT} ^EmailSiphon [OR]', 197 'RewriteCond %{HTTP_USER_AGENT} ^EmailWolf [OR]', 198 'RewriteCond %{HTTP_USER_AGENT} ^Express\ WebPictures [OR]', 199 'RewriteCond %{HTTP_USER_AGENT} ^ExtractorPro [OR]', 200 'RewriteCond %{HTTP_USER_AGENT} ^EyeNetIE [OR]', 201 'RewriteCond %{HTTP_USER_AGENT} ^FlashGet [OR]', 202 'RewriteCond %{HTTP_USER_AGENT} ^GetRight [OR]', 203 'RewriteCond %{HTTP_USER_AGENT} ^GetWeb! [OR]', 204 'RewriteCond %{HTTP_USER_AGENT} ^Go!Zilla [OR]', 205 'RewriteCond %{HTTP_USER_AGENT} ^Go-Ahead-Got-It [OR]', 206 'RewriteCond %{HTTP_USER_AGENT} ^GrabNet [OR]', 207 'RewriteCond %{HTTP_USER_AGENT} ^Grafula [OR]', 208 'RewriteCond %{HTTP_USER_AGENT} ^HMView [OR]', 209 'RewriteCond %{HTTP_USER_AGENT} HTTrack [NC,OR]', 210 'RewriteCond %{HTTP_USER_AGENT} ^Image\ Stripper [OR]', 211 'RewriteCond %{HTTP_USER_AGENT} ^Image\ Sucker [OR]', 212 'RewriteCond %{HTTP_USER_AGENT} Indy\ Library [NC,OR]', 213 'RewriteCond %{HTTP_USER_AGENT} ^InterGET [OR]', 214 'RewriteCond %{HTTP_USER_AGENT} ^Internet\ Ninja [OR]', 215 'RewriteCond %{HTTP_USER_AGENT} ^JetCar [OR]', 216 'RewriteCond %{HTTP_USER_AGENT} ^JOC\ Web\ Spider [OR]', 217 'RewriteCond %{HTTP_USER_AGENT} ^larbin [OR]', 218 'RewriteCond %{HTTP_USER_AGENT} ^LeechFTP [OR]', 219 'RewriteCond %{HTTP_USER_AGENT} ^Mass\ Downloader [OR]', 220 'RewriteCond %{HTTP_USER_AGENT} ^MIDown\ tool [OR]', 221 'RewriteCond %{HTTP_USER_AGENT} ^Mister\ PiX [OR]', 222 'RewriteCond %{HTTP_USER_AGENT} ^Navroad [OR]', 223 'RewriteCond %{HTTP_USER_AGENT} ^NearSite [OR]', 224 'RewriteCond %{HTTP_USER_AGENT} ^NetAnts [OR]', 225 'RewriteCond %{HTTP_USER_AGENT} ^NetSpider [OR]', 226 'RewriteCond %{HTTP_USER_AGENT} ^Net\ Vampire [OR]', 227 'RewriteCond %{HTTP_USER_AGENT} ^NetZIP [OR]', 228 'RewriteCond %{HTTP_USER_AGENT} ^Octopus [OR]', 229 'RewriteCond %{HTTP_USER_AGENT} ^Offline\ Explorer [OR]', 230 'RewriteCond %{HTTP_USER_AGENT} ^Offline\ Navigator [OR]', 231 'RewriteCond %{HTTP_USER_AGENT} ^PageGrabber [OR]', 232 'RewriteCond %{HTTP_USER_AGENT} ^Papa\ Foto [OR]', 233 'RewriteCond %{HTTP_USER_AGENT} ^pavuk [OR]', 234 'RewriteCond %{HTTP_USER_AGENT} ^pcBrowser [OR]', 235 'RewriteCond %{HTTP_USER_AGENT} ^RealDownload [OR]', 236 'RewriteCond %{HTTP_USER_AGENT} ^ReGet [OR]', 237 'RewriteCond %{HTTP_USER_AGENT} ^SiteSnagger [OR]', 238 'RewriteCond %{HTTP_USER_AGENT} ^SmartDownload [OR]', 239 'RewriteCond %{HTTP_USER_AGENT} ^SuperBot [OR]', 240 'RewriteCond %{HTTP_USER_AGENT} ^SuperHTTP [OR]', 241 'RewriteCond %{HTTP_USER_AGENT} ^Surfbot [OR]', 242 'RewriteCond %{HTTP_USER_AGENT} ^tAkeOut [OR]', 243 'RewriteCond %{HTTP_USER_AGENT} ^WWW-Mechanize [OR]', 244 'RewriteCond %{HTTP_USER_AGENT} ^Teleport\ Pro [OR]', 245 'RewriteCond %{HTTP_USER_AGENT} ^VoidEYE [OR]', 246 'RewriteCond %{HTTP_USER_AGENT} ^Web\ Image\ Collector [OR]', 247 'RewriteCond %{HTTP_USER_AGENT} ^Web\ Sucker [OR]', 248 'RewriteCond %{HTTP_USER_AGENT} ^WebAuto [OR]', 249 'RewriteCond %{HTTP_USER_AGENT} ^WebCopier [OR]', 250 'RewriteCond %{HTTP_USER_AGENT} ^WebFetch [OR]', 251 'RewriteCond %{HTTP_USER_AGENT} ^WebGo\ IS [OR]', 252 'RewriteCond %{HTTP_USER_AGENT} ^WebLeacher [OR]', 253 'RewriteCond %{HTTP_USER_AGENT} ^WebReaper [OR]', 254 'RewriteCond %{HTTP_USER_AGENT} ^WebSauger [OR]', 255 'RewriteCond %{HTTP_USER_AGENT} ^Website\ eXtractor [OR]', 256 'RewriteCond %{HTTP_USER_AGENT} ^Website\ Quester [OR]', 257 'RewriteCond %{HTTP_USER_AGENT} ^WebStripper [OR]', 258 'RewriteCond %{HTTP_USER_AGENT} ^WebWhacker [OR]', 259 'RewriteCond %{HTTP_USER_AGENT} ^WebZIP [OR]', 260 'RewriteCond %{HTTP_USER_AGENT} ^Widow [OR]', 261 'RewriteCond %{HTTP_USER_AGENT} ^WWWOFFLE [OR]', 262 'RewriteCond %{HTTP_USER_AGENT} ^Xaldon\ WebSpider [OR]', 263 'RewriteCond %{HTTP_USER_AGENT} ^Toata\ dragostea\ mea\ pentru\ diavola [OR]', 264 'RewriteCond %{HTTP_USER_AGENT} ^Mozilla/5.0\ SF [OR]', 265 'RewriteCond %{HTTP_USER_AGENT} ^Zeus [OR]', 266 // SCANNER PROTECTION 267 'RewriteCond %{HTTP_USER_AGENT} ^w3af.sourceforge.net [NC,OR]', 268 'RewriteCond %{HTTP_USER_AGENT} dirbuster [NC,OR]', 269 'RewriteCond %{HTTP_USER_AGENT} nikto [NC,OR]', 270 'RewriteCond %{HTTP_USER_AGENT} sqlmap [NC,OR]', 271 'RewriteCond %{HTTP_USER_AGENT} fimap [NC,OR]', 272 'RewriteCond %{HTTP_USER_AGENT} nessus [NC,OR]', 273 'RewriteCond %{HTTP_USER_AGENT} whatweb [NC,OR]', 274 'RewriteCond %{HTTP_USER_AGENT} Openvas [NC,OR]', 275 'RewriteCond %{HTTP_USER_AGENT} jbrofuzz [NC,OR]', 276 'RewriteCond %{HTTP_USER_AGENT} libwhisker [NC,OR]', 277 'RewriteCond %{HTTP_USER_AGENT} webshag [NC,OR]', 278 'RewriteCond %{HTTP_USER_AGENT} (havij|Netsparker|libwww-perl|python|nikto|curl|scan|java|winhttp|clshttp|loader) [NC,OR]', 279 'RewriteCond %{HTTP_USER_AGENT} (%0A|%0D|%27|%3C|%3E|%00) [NC,OR]', 280 'RewriteCond %{HTTP_USER_AGENT} (;|<|>|\'|"|\)|\(|%0A|%0D|%22|%27|%28|%3C|%3E|%00).*(libwww-perl|python|nikto|curl|scan|java|winhttp|HTTrack|clshttp|archiver|loader|email|harvest|extract|grab|miner) [NC,OR]', 281 'RewriteCond %{HTTP:Acunetix-Product} ^WVS', 282 'RewriteCond %{REQUEST_URI} (<|%3C)([^s]*s)+cript.*(>|%3E) [NC,OR]', 283 'RewriteCond %{REQUEST_URI} (<|%3C)([^e]*e)+mbed.*(>|%3E) [NC,OR]', 284 'RewriteCond %{REQUEST_URI} (<|%3C)([^o]*o)+bject.*(>|%3E) [NC,OR]', 285 'RewriteCond %{REQUEST_URI} (<|%3C)([^i]*i)+frame.*(>|%3E) [NC,OR]', 286 'RewriteCond %{REQUEST_URI} base64_(en|de)code[^(]*\([^)]*\) [NC,OR]', 287 'RewriteCond %{REQUEST_URI} (%0A|%0D|\\r|\\n) [NC,OR]', 288 'RewriteCond %{REQUEST_URI} union([^a]*a)+ll([^s]*s)+elect [NC]', 289 'RewriteRule ^(.*)$ index.php?bad_traffic=1 [R=301,L]' 177 290 ); 178 291 array_splice( $exploded, 3, 0, $my_rules );
Note: See TracChangeset
for help on using the changeset viewer.