Security

This module will allow the user to make backups of their drupal installations along with a SQL dump of their Drupal database. By itself, the module operates manually, unrestricted.

Regular text based and hosted Captcha, better Captcha experience.

IP Ranges is a module that let's you completely ban both single IP-addresses as well as
full ranges from your site. The ban is triggered already at the early bootstrap phase, so you
can get rid of unwanted visitors as early as possible without wasting server resources.

You can also define whitelists that override blacklists, both single and ranged.
The UI is similar to core ip-ban, so you will feel like home immediately.

INSTALLATION

Just enable the module as usual.

USAGE

After enabling the module, go to admin/config/people/ip-ranges to find form where you can enter either single IP-address or IP Range, and a list type.

IP-address range is entered in the form of 100.100.100.100 - 100.100.101.150.
(This is currently the only allowed range form, other types like bitmasks may come at later stage).

Type can be either "blacklist" or "whitelist",
where blacklisted IP's are denied from the site, and whitelisted are allowed.
Whitelists always override blacklists.

ALTERNATIVES

Restrict IP allows you to enter whitelists. All other IP's are banned.
Unlike IP Ranges, it does not actually restrict access to the page, but rather

Terms and conditions

Vulnerability Blocker

This is a simple but very powerful module that we have used with success on some of our production sites.

How it works?

Lot of XSS attacks happen due to script tags being put up in the URL and to execute them hackers use '<', '>' to enclose tags. We did some extensive testing on few of our production sites using some renowned XSS scanners and it was difficult to plug them all. This simple fix plugged all attacks and it has been months we have seen any XSS alert on any of them

This module is not a replacement for check_plain which is intended to be used wherever possible in open drupal forms, but a generic url filter to avoid hackers from exploiting URLs. So, we are trying to sanitize cross-site suspicious GET requests here.

It blocks vulnerability attacks by identify patterns in the URLs like '<', '>','%3E' and '%3C' and hence, prevent XSS Vulnerability injection.

Usage:

1. Download this module to sites/default/modules
2. Enable it from admin/settings/performance

Make sure for all the default URLs in your Drupal site, you are replacing your are replacing '<', '>','%3E' and '%3C' with standard '-' using Pathauto module.

Caution: This module is experimental and feedback from the community is highly solicited. Send feedback on drupal@ebizontek.com.

PICATCHA™ is a unique image-identification CAPTCHA that effectively protects your website from Internet abuse - spam and automated bots. It is a well known fact that websites loose approximately 3-18% of user interactions (comments, sign-up etc) due to the additional burden of re-typing the squiggly garbled text CAPTCHAs. Imagine if your website is being visited from a tablet device or a smartphone - the end user is left to zoom/pan, decipher the text and typing with auto-correction makes the whole experience frustrating. It is also inevitable that mobile Internet will eclipse desktop Internet, and we believe that as a website administrator you make the right CAPTCHA choice and be ready for this shift.

Hence, PICATCHA™ was designed keeping all these factors in mind - to give the highest levels of user experience to your website visitors while ensuring the strongest defense against spam on all kinds of devices. PICATCHA™ presents the website visitor with an array of thumbnails. The visitor clicks and selects them to verify that he/she is a human interacting with your website and not an automated bot. PICATCHA™ changes the standard CAPTCHA test of "are you a human?" from a necessary evil to a positive experience.