FuseGuard Logo

FuseGuard 3.0.4 Component API Reference

fuseguard.components

firewall The FuseGuard Web Application Firewall for ColdFusion 
FuseGuardApplication Utility Component Intended to be extended by Application.cfc 

fuseguard.components.authenticators

BaseAuthenticator The base authentication component (abstract) 
DBAuthenticator Authenticates against the fuseguard database tables fuseguard_users 

fuseguard.components.configurators

BaseConfigurator The Base Component that All Configurator Components Should Extend. 
BaseURLBuilder Contains the default URL builder implementation, extend this component to create a new URL structure for FuseGuard Manager (eg for SES urls or Framework Specific URLs). 
DBConfigurator  
DefaultConfigurator Example Configuration that only blocks requests that have a threat level of 10. 
ExampleConfigurator  
LogOnlyConfigurator Example Configuration that only logs attacks, it does not block them. 
StrictConfigurator Example Configuration that is more strict 

fuseguard.components.filters

BaseFilter The Base Component all Filters must extend. 
ContentLengthFilter Inspects the HTTP Content Length Header 
CRLFInjectionFilter Looks for CRLF Injection in the HTTP Headers 
CrossSiteScriptingFilter Looks for XSS in the HTTP Request 
DictionaryAttackFilter Detects Repeated Requests Containing Passwords 
DotDotSlashFilter Looks for ../ in Request 
FileUploadContentFilter Checks the File Content of Uploaded file and looks for executable content. 
FileUploadFilter Checks the File Extensions of Uploaded file and matches them against a whitelist or blacklist. 
FilterUtils Utility Functions For Filters 
ForeignPostFilter Detects HTTP Post Requests with referrers other than the origin 
GeoFilter Allows you to block IPs by Geography.  
HoneyPotFilter Blocks IPs based on the Project Honey Pot http:BL Blacklist 
IDValidationFilter This filter validates that all input variables ending in ID are either integers, UUIDs, or simple string values 
IPBlackListFilter Only allows IP Addresses that are the List 
IPWhiteListFilter Only allows IP Addresses that are the List 
JVMFloatingPointFilter This filter validates that input variables do not contain a value that can crash old JVMs (1.6.0_24 or lower). 
LocalHostFilter Checks if request is from localhost 
NullByteFilter Checks if request is from localhost 
QueryStringLengthFilter Allows you to limit the length of query string 
RemoteExecutionFilter Looks for remote execution patterns 
RemoteMethodFilter Looks for remote method requests 
RepeatOffenderFilter Detects IP's that have been blocked multiple times, and allows you to block all subsequent requests 
ScopeInjectionFilter This filter validates that input variables names dont use scopename. 
SessionHijackingFilter Detects if a Session Changes User Agent 
ShellExecutionFilter Looks for shell path execution patterns 
SimpleIPBlockingFilter Allows you to block IP's 
SQLInjectionFilter Looks for SQL Injection in the HTTP Request 
URLSessionIDFilter Looks for Session ID in the URL (eg CFID, CFTOKEN, or JSESSIONID) 
UserAgentFilter Looks for Bad / Malicious User Agents 
VariablePatternFilter Blocks Variables that match or do not match the specified pattern 
XMLEntityInjectionFilter Looks for XML Entity Tags in Request. 
XMLExternalDTDFilter Looks for XML External DTD in Requests. 

fuseguard.components.ip

DBIPListProvider  
IPListManager API for managing IP lists 
IPListProvider An abstract IP list provider, extend this component to create your own custom IP List Provider 

fuseguard.components.listeners

CFMailDigestLoggerListener Event Listener Used by the RepeatOffenderFilter 
EventListener Base Component All Event Listeners Must Extend 
RepeatOffenderEventListener Event Listener Used by the RepeatOffenderFilter 

fuseguard.components.loggers

BaseLogger Base Component All Loggers Must Extend 
BaseLogReader I am an abstract class for reading from a log 
CFLogLogger Logs to the local server filesystem using the cflog tag. 
CFMailDigestLogger Sends log summary emails in batches at a specified interval. Please ensure that you have specified a SMTP server in the CF admin or in your Application.cfc. This logger also requires that the DBLogger is enabled, since it queries the database to fetch logs. 
CFMailLogger A Logger that sends log messages via email using the cfmail tag. Please ensure that you have specified a SMTP server in the CF admin or in your Application.cfc 
DBLogger Logs to a database using the cfquery tag. 
DBLogReader I read from the log database and return results 


Copyright © Foundeo Inc. 2006-2017 - Version: 3.0.4 - Build Date: 2017-12-01