SIWECOS is a project sponsored by the German government. It provides a set of scanners for common website security vulnerabilities. The report gives recommendations for securing the setup, e. g. by content security policy (CSP) headers.
This module integrates the Siwecos token and makes the security report available in the Drupal back-end.
CMS Garden members have co-driven this project right from the start. As of 2021, CMS Garden is also the maintainer of SIWECOS. Special thanks to JustSnipy.
How to use it
- Register your account at the Siwecos project site and copy your credentials from there. (No data abuse, promised.)
- Install the SIWECOS module and enable it.
- Enter email and password of your Siwecos account at /admin/config/system/siwecos
- Access your site's report at /admin/reports/siwecos
Please note: There's currently no support for .htpasswd protected or otherwise not publicly accessible sites.
Recommended modules
- Security Kit provides various security-hardening options.
- Content-Security-Policy - in a vanilla Drupal setup, the scanners usually find issues with the content security policy headers (CSP).
🇺🇦 |
#StandWithUkraine Please consider supporting Ukraine in a fight for their freedom and safety of Europe. |
Project information
- Maintenance fixes only
Considered feature-complete by its maintainers. - Module categories: Security, Integrations
- 14 sites report using this module
- Created by C-Logemann on , updated
- Stable releases for this project are covered by the security advisory policy.
Look for the shield icon below.
Releases
🐸 The all green release