Show HN: Laravel middleware that logs attacks-injection, XSS, bots, never blocks
Original Article Summary
Built this after running a SaaS with zero visibility into who was probing it.One middleware, drop it in, and it starts logging SQL injection, XSS, RCE, directory traversal, scanner bots (sqlmap, nikto, burp suite), DDoS patterns, Log4Shell — 130+ patterns tot…
Read full article at Github.com✨Our Analysis
Laravel's introduction of a new middleware that logs attacks, including SQL injection, XSS, and bots, with over 130 patterns, marks a significant enhancement in threat detection for web applications. This development is particularly relevant for website owners who use Laravel as their framework, as it provides them with greater visibility into potential security threats. The ability to log attacks without blocking them allows website owners to monitor and analyze malicious traffic, including AI-powered bots, without disrupting legitimate user activity. To effectively utilize this middleware, website owners can take several actionable steps: first, integrate the middleware into their Laravel application to start logging potential threats; second, regularly review the logs to identify patterns and potential vulnerabilities; and third, update their llms.txt files to reflect any changes in bot traffic or attack patterns, ensuring that their security measures remain effective against evolving threats.
Related Topics
Track AI Bots on Your Website
See which AI crawlers like ChatGPT, Claude, and Gemini are visiting your site. Get real-time analytics and actionable insights.
Start Tracking Free →
