# PHP Application Protection

As most of the application in web consists of php as the server side language . Prophaze WAF got module to secure the app from attacks targeting the php apps . Some of the protection methods built into the core are 

* PHP open and close tag detection
* Script file upload prevention
* Blocking configuration directives
* Variables and IO stream blocking
* Blocking high risk PHP function calls
* Disabling PHP serialisation object
* Variable function call detection