nawasara/secscan
Composer 安装命令:
composer require nawasara/secscan
包简介
Security threat detection for the Nawasara superapp — scans monitored MySQL databases (WordPress focus) for judol/gambling SEO spam, defacement, phishing, and malware indicators. Read-only: detect + alert, never remediate.
README 文档
README
Security threat detection for the Nawasara superapp. Scans the MySQL databases
already monitored by nawasara/database-monitor (read-only) — WordPress sites
in particular — for indicators of compromise:
- Judol / gambling SEO spam — published posts/blognames with gambling keywords
- Defacement / redirect hijack —
siteurl/homepointing off the gov domain - Malware — injected
<script display:none>/eval(base64)content, suspicious autoload options - Account anomalies — recently-registered admins (weak signal, verify manually)
It is detect + alert only — it never writes to the OPD databases. Findings
get a confidence score (0-100) and severity, are stored with a triage workflow
(open / acknowledged / false-positive / resolved), shown on a dashboard, and
raised as alerts via nawasara/alerting.
Setup
nawasara/database-monitormust be configured (Vault groupdatabase-monitor) — secscan reuses its read-only connection.- Seed permissions:
php artisan db:seed --class="Nawasara\Secscan\Database\Seeders\PermissionSeeder" - The hourly scan runs automatically (scheduler). Trigger manually from the
Dashboard "Pindai sekarang" button, or:
\Nawasara\Secscan\Jobs\ScanWordpressJob::dispatch(triggerSource: 'manual');
Roadmap
- F1 (this): SQL signal detector + findings + triage UI + alerts.
- F2: Python sidecar for live HTTP probe (cloaking, redirect-on-fetch).
- F3: Google Custom Search index check (
site:domain slot|judi).
统计信息
- 总下载量: 0
- 月度下载量: 0
- 日度下载量: 0
- 收藏数: 0
- 点击次数: 6
- 依赖项目数: 0
- 推荐数: 0
其他信息
- 授权协议: MIT
- 更新时间: 2026-06-25