Aggressive Bot and Parser Protection Script (JS Challenge + Rate Limit)

by Vitalii-litv

Aggressive Bot and Parser Protection Script (JS Challenge + Rate Limit)

Documentation

Detailed guides & setup instructions

About this product

🛡️ Protect Your Website from Downtime and Scraping in 5 Minutes!

MurKir Security is a powerful and lightweight traffic filtering script (WAF) that acts as a "face control" for your website. It analyzes every visitor before your heavy CMS (WordPress, OpenCart, etc.) even starts loading. This drastically reduces server load and prevents downtime during attacks.

The script utilizes Redis for lightning-fast request counting, ensuring zero load on your MySQL database.

🔥 Who Needs This?

  1. Website owners suffering from Layer 7 DDoS attacks.
  2. Projects facing hosting suspensions due to high CPU/RAM usage.
  3. Content creators protecting their data from scrapers and parsers.
  4. Administrators looking to secure login pages from Brute Force.

⚙️ How It Works

  1. Regular User: Accesses the site instantly. No CAPTCHA required (Smart Cookie Check).
  2. Search Bots (Google/Bing): Allowed automatically via IP Whitelist. SEO rankings remain safe.
  3. Suspicious Bot: Presented with a JS Challenge screen. The browser solves a mathematical Proof-of-Work (PoW) task, burdening the bot's CPU, not your server.
  4. Aggressive Attacker: Instantly blocked via Rate Limiting (Redis) or System Firewall (Iptables).

🚀 Key Features

  1. Dual Operation Modes:
  2. Lite Mode (Shared Hosting): Blocks requests via PHP + Redis (Returns 403 Forbidden).
  3. PRO Mode (VPS/VDS): Completely blocks access to the server via Iptables API (Hard Ban).
  4. Powerful Admin Panel: Real-time attack monitoring, ban management, search bot logs, and whitelist control.
  5. Smart PoW: Advanced protection against "smart" bots capable of executing basic JavaScript.
  6. Auto-Cleanup: CRON script automatically unbans IPs after a set period.
  7. Customization: Includes 2 built-in themes for the verification screen.

📋 Server Requirements

  1. PHP 5.6 or higher (up to 8.3).
  2. Redis Server (Required).
  3. PHP-Redis Extension.
  4. For PRO Mode only: Linux (Ubuntu/Debian/CentOS) with Root/Sudo access.

📦 What's Included?

  1. inline_check_lite.php — Core Security Engine.
  2. redis-bot_admin.php — Administration Control Panel.
  3. iptables.php & cleanup.php — API & Cleanup Modules.
  4. Detailed HTML Documentation (Installation & Setup Guide).


Demo Login Details

Admin Account

Email

info@murkir.pp.ua

Password

info@murkir.pp.ua

Changelog

v1.0.0 Feb 08, 2026

New Feature

  • Initial release
$29.00

Standard License

There is no additional charge for updates. You can continue to download the latest version for free.

  • Single end product Use in one project only
  • Personal or commercial use Suitable for business projects
  • No redistribution Cannot be resold or shared

Refer & Earn 10% New

Share with friends and earn commission on their purchases.

Author

Vitalii-litv

Script Author

Project Specifications

Timeline

Last Updated:
2026-02-09
Published:
2026-02-08

Technical Details

Software Framework:
Laravel Symfony CodeIgniter Livewire WordPress CakePHP Slim Yii Zend Framework Phalcon Laminas FuelPHP Kohana Aura PHPixie Flight Lumen Drupal Joomla Magento
Software Version:
PHP 8.3.x PHP 8.2.x PHP 8.1.x PHP 8.0.x PHP 7.4.x Redis 7.x
Files Included:
PHP HTML

Compatibility

Platforms:
Web Mobile Desktop
Compatible Browsers:
Tor Browser UC Browser Samsung Internet Internet Explorer Vivaldi Brave Opera Edge Safari Firefox Chrome

Tags & Categories

Tags:
#admin #api #security