Threat Protection Framework - Extensible Core

TPF-XC is a robust server-side API and security toolkit that inspects, validates, and logs online form submissions to protect against spam (particularly spambots), abuse, malicious input and website hacking attempts. It operates through a layered framework of input sanitisation, data validation, blocklists enforcement, and submission quota control. The system checks key data points against regularily maintained blocklists, with supported protection against CSRF attacks.

TPF-XC logs blocked data submissions, capturing detailed metadata for audit purposes while maintaining performance. Designed for extensibility, it supports per-customer settings, domain authorisation, and clean JSON responses, making it a lightweight yet powerful defence layer for public-facing web forms.

© 2025 Visual Interactive