Security level is currently: $securityLevel.
"; } $securityOptionsHtml .= ""; } $phpIdsHtml = 'PHPIDS is currently: '; if( dvwaPhpIdsIsEnabled() ) { $phpIdsHtml .= 'enabled. [Disable PHPIDS]'; } else { $phpIdsHtml .= 'disabled. [Enable PHPIDS]'; } // Anti-CSRF generateSessionToken(); // Able to write to the PHPIDS log file? $WarningHtml = ''; if( !is_writable( $PHPIDSPath ) ) { $WarningHtml .= "
" . dvwaExternalLinkUrlGet( 'https://github.com/PHPIDS/PHPIDS', 'PHPIDS' ) . " v" . dvwaPhpIdsVersionGet() . " (PHP-Intrusion Detection System) is a security layer for PHP based web applications.
PHPIDS works by filtering any user supplied input against a blacklist of potentially malicious code. It is used in DVWA to serve as a live example of how Web Application Firewalls (WAFs) can help improve security and in some cases how WAFs can be circumvented.
You can enable PHPIDS across this site for the duration of your session.
{$phpIdsHtml}
[\">Simulate attack] - [View IDS log]