- Site Security

EJB - Easy Joomla Backup

EJB - Easy Joomla Backup

Free | Site Security | Viktor Vogel
3
Score:
85
22 reviews
Easy Joomla Backup creates 'old-school' backups without any frills. All files and a full database dump are stored in one backup zip archive. With this archive you have all important data with which you can restore the website completely combined in one package. The component is intentionally kept simple, so as not to distract from the essentials: backing up the Joomla! website! Use the cronjob plugin to schedule your backups! Features Create quickly and easily backups in Joomla! Extension creates Backups of all files and the database 3 different backup types: Full, Database and File Backup All files and a database dump are packed into one ZIP archive Extended ACL settings: Configure, Access Administration Interface, Delete, Download, Full Backup, Database Backup, File Backup, Discover Easy recovery - files via FTP, database dump via a database tool, e.g. phpMyAdmin Exclude files from the backup archive Exclude folders from the backup archive Add 'DROP TABLE' order to the dump file Add additional tables from the database System Plugin: EJB Cronjob Download Joomla! 3.x - https://joomla-extensions.kubik-rubik.de/downloads/ejb-easy-joomla-backup/joomla-3 Support The extension is completely free, but you need a subscription for support: https://joomla-extensions.kubik-rubik.de/subscription
c p
FPC - Force Password Complexity

FPC - Force Password Complexity

Free | Site Security | Viktor Vogel
3
Score:
83
4 reviews
With Force Password Complexity strong passwords are enforced based on individual rules! The system plugin checks the user passwords using defined security patterns and rejects weak passwords. In this way FPC ensures stronger security of the whole system. The execution of the plugin and the checks of the passwords can be set completely customized to ensure an own standard of security. Features Force secure, good passwords with individual rules Set precise execution rules: Execution in front- and / or backend Restrict to specific user groups Restriction with warning notice for unselected groups possible Check the type of users - only new, existing or all users Individual checks for secure passwords: Minimum length of passwords Minimum size of the entropy of passwords Forbid parts of the name and the e-mail address Maximum number same and same consecutive characters Force character types: uppercase / lowercase letters, numbers and special characters Plugin is small and fast, doesn't need a big framework Fast, clean code Languages: English and German Download Joomla! 3.x - http://joomla-extensions.kubik-rubik.de/downloads/fpc-force-password-complexity/joomla-3 Support The extension is completely free, but you need a subscription for support: http://joomla-extensions.kubik-rubik.de/subscription
p
Failed Login Attempts

Failed Login Attempts

Free | Site Security | Web357
3
Score:
80
1 review
This Joomla! Plugin records the failed and successful login attempts into the backend and frontend of your Joomla! website. It is useful for security purposes and serves as an information pool to track malicious user access (IP, country, browser, OS, etc.). USEFUL PARAMETERS Enable logs for backend (Store the logs for failed login attempts in Joomla's back-end). Enable logs for frontend (Store the logs for failed login attempts in Joomla's front-end). Successful Login Attempts (Store the logs for successful login attempts in Joomla front-end). Direct notification via email (Inform Admins for the failed and successfully login attempts). Save Logs to Database (Store the failed and successfully login attempts into the Database). Log Data: IP Address Log Data: Username Log Data: Password Log Data: Date Time Log Data: Country Log Data: Browser Log Data: Operating System CHANGELOG https://www.web357.com/joomla-extensionsfailed-login-attempts#changelog SUPPORT Normally we will answer your questions within 24 hours. If you still have questions or concerns about the product after reading the documentation: ★ You can use our Support Forum https://www.web357.com/forum to ask your issues and report bugs. ★ Contact us using the contact form https://www.web357.com/contact. ★ You can send us an email to this address: support [@] web357 [.] com ★ Chat with us using the right-bottom box. If you did not find the information you were looking for in the documentation or if you have any other questions regarding the product feel free to contact us. We will be happy to provide you with a detailed answer as quickly as we can. 30 DAYS MONEY BACK GUARANTEE It’s all about trust. With Web357, you cannot lose. Either you will love it and enjoy using it, or you will get your money back. Simple as that. ★ Still got questions? Ask anything at info@web357.com. ★ More information at https://www.web357.com/joomla-extensions/failed-login-attempts
p
EasyCAPTCHA_efence

EasyCAPTCHA_efence

Free | Site Security | Brij Mohan
3
Score:
77
2 reviews
efence can do the following for you: 1. Protection against spam and malicious bots that can harm your web resources: efence is an alternative to CAPTCHA which protects your website against spam and makes it fun for the user to solve challenges. It presents an interactive picture based challenge for the users giving them a break from typing those boring twisted characters. It brings in the fun factor while avoiding the serious spam. Moreover it's an ideal spam protection tool for handheld devices. Just ask your users about what they like doing on their mobile or tablet, typing those twisted characters or just touch, tap and slide. The answer would be exactly what efence offers. 2. Guaranteed user engagement with your valued digital advertising and marketing materials: In case of a traditional CAPTCHA, when the user fights with those ugly looking twisted monsters, all that precious time and attention gets wasted with no benefit at all. efence empowers you to capitalize on this precious time and effort. What do you get ? dedicated eyeballs, guaranteed user engagement. This is done by providing great control and flexibility in creating your own branding images for guaranteed engagement. To place your branding images for free, please contact us at support@engageclick.com This is an official efence plugin which lets you embed efence at the most critical places on your website without editing any files. It takes only a few minutes to install and configure the plugin, in order to unleash the immense power of efence. Significant features   - Receive guaranteed attention to your in-house or external digital marketing contents   - Spam protection by an innovative "Captcha" alternative   - Places a customizable spam protection mechanism on your site - customize colors, shape, size and other attributes.   - Audio aid for visually impaired   - Category based customizable challenge options.   - Customer engagement using your own branding images.   - Powerful analytics to understand customer behavior.   - Works in all the browsers (including IE6!).   - Secure channel option for information security.   - Non-blocking, high-performance code. Sign up for efence - http://efence.engageclick.com Take an online demo to get an idea of how efence works as a powerful Captcha alternative ensuring customer engagement. Go Premium If you have custom requirements and need support package, we have an dedicated awesome team that delivers quality customization and support Visit official plugin homepage at http://efence.engageclick.com/selfservice-2/plugin/joomla.
m p
Antivirus Website Protection

Antivirus Website Protection

Free | Site Security | SafetyBis Ltd.
3
Score:
74
18 reviews
Antivirus Website Protection is the security plugin to prevent/detect and remove malicious viruses and suspicious codes. It detects: backdoors, rootkits, trojan horses, worms, fraudtools, adware, spyware and etc. Antivirus Website Protection scans not only template files, it scans and analyzes all the files of your website (even if it's not a part of Joomla core files) Antivirus Website Protection will be especially useful for everybody who downloads templates and extensions from torrents and websites with free stuff instead of purchase the original copies from the developers. You will be shocked, how many free gifts they have inside :) *** Main features: *** - Deep scan of every file on your website. - Daily update of the virus database. - Heuristic Logic feature. - Alerts and Notifications in admin area and by email. - Daily cron feature. - Scanner can detect a wide list of malware types. - View Security reports online. *** The list of malware types what our scanner can detect: *** - MySQL and JavaScript injections (There is a lot of different attacks on your website but the most popular type and the easiest is probably MySQL injection. Our scanner will help you detect all possible issues with JavaScript and MySQL) - Website Defacements (When hackers break in to your website they can change the appearance of your website or a webpage. We have set up a feature that can help you prevent any changes on your website) - Hidden iFrames (If hacker gets an access to your website Ftp they usually set up a hidden iFrame. That way they can use your website to get the viruses on your visitors computers) - PHP Mailers (Sometimes hackers use your website to send a SPAM emails from your web server. Our smart scanning module was made to detect all possible PHP mailing scripts on your website and prevent your website from sending SPAM) - Social Engineering Attacks (There are a lot of social engineering methods to get an access to your website. Our scanning software will help you to protect your website) - Phishing Page Detection (Hackers can install a phishing page on your website without you knowing it. Sometimes they can use your website) - Redirects - Website Backdoors (Allow to get full control on website and server) - Website Anomalies - Drive-by-Downloads - Cross Site Scripting (XSS) - .htaccess (Hack Detection) - Rootkits and variants of this type of malware - Trojan horses - Internet worms - Fraudtools - Adware and spyware scrips and much more... Protect your website before the problems come. Monitor your website and minimize incident time with our automated scans. Please note: Plugin sends and receives the data to SiteGuarding.com API.
c
yKhoon Block Failed Login

yKhoon Block Failed Login

Paid download | Site Security | YK Lim
3
Score:
74
1 review
yKhoon Block Failed Login is an extension that will automatically blocked your visitor IP Address or user account when your visitor exceeded certain number of failure login. When your visitor are blocked, they cannot browse or access your web site for a certain period of time. After that, the extension will automatically unblock your visitor IP Address or user account. The extension will not only protect your front-end (visitor area), it will also protect your back-end (admin area). This will improve your web site security since it will prevent brute-force login attempt on you web site. The extension will create a log that contain some information such as date, time, visitor IP Address, login attempt on front-end or back-end, and etc, so that you take further action based on the log file. Changes: Compatible with PHP 7. Main Features: Automatically block an IP Address or user name after a specific number of failure login within a period of time. Automatically unblock an IP Address or user name after a specific period of time. If a failure login attempt is after a specific period of time, it will consider that failure login as first attempt and will block the IP Address or username after a specific number of failure login within a new period of time. Set the number of failure login attempt before block an IP Address or username. Set the time limit, and when certain number of failure login reached within this period of time, the IP Address or username will be block. Set specific period of block time for front-end failure login. This apply for IP Address or user name that has been blocked by the front-end login module. Set specific period of block time for back-end failure login. This apply for IP Address or user name that has been blocked by the back-end login module. Prevent the blocked IP Address or username from browsing the website(front-end or back-end) until the system unblocked the IP address. Create a log file with useful information every time when a failure login detected or when a blocked IP Address or username try to browse your website. Choose whether to block IP Address or user name. Failed Login Manager to manages to blocked IP Address or user name. Unblock an IP Address or user name before the blocked time end. Successfully checked as XHTML 1.0 Transitional and validates as CSS Level 3 using W3C Markup Validation Service and W3C CSS Validation Service. Support Integrated Product Update System for checking and download latest version of the product. Display the blocked user name error message within or outside the web site. Set the block time for front-end login and back-end login in minutes, hours, days, and months.
c p
TZ Guard

TZ Guard

Free | Site Security | TemPlaza
3
Score:
74
1 review
This is a simple plugin which will help you to security your site. The administrator will be protected by a security code. Furthermore you can define a blacklist IP to refuse connection from spam ip and block the BOT system to access your site.
p
LazyDbBackup

LazyDbBackup

Free | Site Security | Robert Gastaud
3 4 Alpha
Score:
73
21 reviews
LazyDbBackup is based on LazyBackup by Stefan Granholm. (GNU/GPL 2 or over license). This plugin was internationalised (for Joomla! 1.5 and 1.6) and modified to run with Joomla! 1.6 and now Joomla! 2.5 (Joomla! 3.4.6 too). Two versions: PDO (doesn't work on some servers) and Mysqli. All versions come now with English, French, German translation files (thanks to Nathalie Laurent (n-at-work.net) for this German translation) and now Spanish translation by Jorge Ferreira (jorguito.com). 2012-12-20 : added italian translation by Giovanni Roli. Its purpose is to backup your Joomla! (only MySQL) database and send the backup file by e-mail. One parameter allows you to deactivate the e-mail feature; the backup files are then kept in a special folder which you can download by FTP when needed. Version 1.5.5 for Joomla! 1.5 Version 1.6.5a for Joomla! 1.6 and 1.7.0 Version 2.5.0a for Joomla! 1.6/1.7/2.5 2011-07-09: corrected bug when sending backup to multiple email addresses (thanks to Gerald Berger) 2011-12-23: 2.5.0 now Joomla! 1.6/1.7/2.5beta compatible 2012-01-19: 2.5.0a Joomla! 1.6/1.7/2.5 compatible 2012-09-26: 3.0.1 Joomla! 2.5/3.0 compatible 2013-11-18: 3.1.2 Joomla! 2.5-3.2 compatible 2015-03-17: 3.4.2 2 versions 2.5-3.4 compatible PDO and MySQLi 2016-03-25: 3.5.1 Joomla! 3.5 compatible; allows you not to delete backup file after mailing it 2016-07-08: added dutch translation, thanks to Eric Swinnen 2017-04-12: 3.7.0 JRequest replaced; added slovenian translation by Ervin Bizjak. Thanks to him! Joomla! 3.7 compatible 2018-01-23: PDO and MySQLi 3.7.1 versions are 4.0dev compatible 2018-03-19: 3.7.3 PDO and MySQLi: we exclude data from "#__session" 2018-03-23: Please replace immediatly your 3.7.3 MySQLi version with 3.7.4 that corrects a big bug. Thanks to Gerald Berger 2018-04-03: version 3.8.0 now, you will be informed by email (except deactivation of the parameter) as soon as a new version of LazyDbBackup is available
p
JProiCaptcha

JProiCaptcha

Paid download | Site Security | JPro Extensions
3
Score:
70
5 reviews
JProiCaptcha is a user friendly secure Captcha plugin for Joomla! 3. It's Joomla! R3ADY! JProiCaptcha, allows you to protect your Joomla! 3+ forms from spammers and bots. When enabled, it renders automatically on all Joomla! system forms - user registration, password reminder, password reset, and contact forms. With just a few lines of code, it can be set to work on any form and avoid spamming and bots to submit your website forms undesirably. JProiCaptcha is a unique and proprietary JPro Extensions system plugin, initially developed to work with the JProEasyContact module, and now available to be used site wide and the new 3.0.5 version allows non bootstrapped templates to also use JProiCaptcha on Joomla! 3. JProiCaptcha is packed with several options that can be set on your Joomla! 3 back-end and with extra security layers for validation, to allow safe contacts to be sent. Now also compatible with Joomla! 3 templates that don't load the bootstrap framework and customizable buttons and with almost all configurations possible.
p
jHackGuard

jHackGuard

Free | Site Security | SiteGround Web Hosting
3
Score:
58
47 reviews
jHackGuard is designed by SiteGround to protect Joomla websites from hacking attacks. Just add it to your Joomla and it will be safe against SQL Injections, Remote URL/File Inclusions, Remote Code Executions and XSS Based Attacks! This plugin has been successfully used by SiteGround customers during the past few years. Now we make its latest version public, so that you can easily protect your Joomla site. All you need to do is to install jHackGuard and enable it – no additional configuration needed!
c p
JR Captcha

JR Captcha

Free | Site Security | JoomlaRoad
3
Score:
56
3 reviews
Captcha for Joomla core and custom forms.Inserts captcha in registration,contact,reset password, remind username forms on enabling this plugin.To add captcha in custom forms without changing any existing codes or admin settings, follow the steps mentioned below. Just have to follow 3 steps for core forms. 1.install the plugin 2.publish the plugin 3.choose JRCaptcha on global configuration Integration with All Joomla Forms.
p
CedSecurityImages

CedSecurityImages

Free | Site Security | Galaxiis
3
Score:
0
69 reviews
Ever been to a site where you had to register and the registration form required that you type in the same phrase that is found in a hard-to-read image? Joomla! has now this possibility thanks to my extension CedSecurityimages. It will protect You against most spammers attempt! Features Support best online captcha services: Recapctha, KeyCaptcha and NuCaptcha Protect all JForm Field of all Joomla! extensions without ANY patches to Joomla! core or extensions Good and configurable captcha Why using CedSecurityImages? CedSecurityImages protect all Form in joomla without any hacks or Joomla core changes. CedSecurityImages produce CAPTCHA (an acronym for "Completely Automated Public Turing test to tell Computers and Humans Apart") is a type of challenge-response test used in computing to determine whether or not the user is human. CAPTCHAs are used to prevent bots from using various types of computing services or collecting certain types of sensitive information. Applications include preventing bots from taking part in online polls, registering for free email accounts (which may then be used to send spam) and collecting email addresses. You're part of our marketing team! At Galaxiis.com we receive feedback from our customers and consistently turn their comments and suggestions into new and improved features. Satisfaction Guarantee If you are not totally satisfied with our product or installation, we will promptly resolve any issues. In the event you are still not completely satisfied, we will refund your money.
c p
JB Hide

JB Hide

Paid download | Site Security | frog
3
Score:
0
2 reviews
Hide the Fact Your Website is Powered by Joomla with JB Hide Component and plugin Joomla websites are susceptible to a wide range of attacks including SQL injections, brute-force attacks, and unauthorized logins. There are many joomla security plugins can improve the security of your website by addressing common security issues such as changing the administrator account from admin. Current joomla security plugins don’t protect or hide joomla files. I have developed JB Hide Component and plugin because most hackers and bots know where to find important Joomla files and pages. A bot that is designed to target Joomla websites will therefore attack any website with Joomla files, and pass by those that do not. Just as hacking software takes advantage of the fact that all Joomla websites are structured in the same way, JB Hide takes advantage of the fact that software can only target your website if it knows your website structure. It does this by removing all evidence that your website is powered by Joomla. This makes it very difficult for hackers to infiltrate your website. Boost your security JB Hide control access to PHP files. It protects your site from almost 90% of SQL-Injection and eXSS attacks caused by direct access to PHP files. This means you can install unsafe plugins without worry abhout security. That makes impossible for hackers to find the path to php files and they can not identify the whether the joomla is used for website. How does it work The magic starts now… But before it please note everything is in its default location and we just control access to it. This guarantees maximum compatibility for our plugin. Redirect to 404 page from users page index?options=com_users Hide administrator link · Try this: http://flance.info/hideme/index.php?options=com_users · Not found!? OK. Redirected to custom 404 page · Try http://flance.info/hideme/administrator · NOT found try this http://flance.info/hideme/administrator/?test=1234 You get administrator page In html output of the site you get Change Joomla template directory, remove template Info from stylesheet, hash template folder name Instead of template/template_name/template.css you get bare/jt315/css/template.css Instead of template/template_name/template.js you get bare/jt315/css/template.js Change components/ modules / plugins/ media directory folder and hash folders’s name for AJAX url and CSS files , etc · Instead of media/jui /js/jquery.min.js flance.info/hideme/me/fhetq/js/jquery.min.js · Instead of intead of module/js/javascriptfilename.js you get /fakemodulename/ hashed – example :sw2ww /js/ javascriptfilename.js · Instead of intead of component/js/javascriptfilename.js you get /fakecomponentname/ hashed – example :sw2ww /javascriptfilename.js · Instead of intead of plugins/js/javascriptfilename.js you get /fakepluginsname/hashed – example :sw2ww/javascriptfilename.js Getting fake fol
c p
jomDefender

jomDefender

Paid download | Site Security | 'corePHP'
3
Score:
0
1 review
Most hacker attacks are preventable. Instantly protect your website from most attacks with jomDefender, a must-have first line of defense for every Joomla-powered website. Each day, Joomla websites all over the world come under attack from ruthless hackers who deface front pages, delete critical data, upload malicious viruses, and steal sensitive customer information. Sadly, most hacker attacks cost owners dozens of hours and often thousands of dollars to repair. jomDefender is a must-have plugin to help you avoid costly downtime and embarrassing hacker attacks. Casual hackers don’t want to work too hard to gain entry to a site or server. They simply scan websites, looking for known identifiers that tell them whether a site is running a software they're particularly skilled at breaking and entering. Unfortunately, Joomla is often targeted by hackers, due to its popularity, and also due to many site owners who do not properly protect themselves from intrusion. Running a site without jomDefender is like leaving your car running, with the doors wide open, in a crowded parking lot, in the bad part of town. Every single day. You're inviting trouble, and sooner or later, that trouble will find you, and take you for a ride you'll never forget. Once hackers can identify the software, they will run pre-fabbed hacker scripts to help them gain control of your site, and the rest is history. All your content, data and customer information could then be wide open for the hacker to take, and often sell to others too. jomDefender keeps your Joomla applications hidden and protected, to prevent attacks from casual hackers, by scrubbing known Joomla identifiers from your site. Additionally, jomDefender also protects your site with security features such as an extra admin login screen (makes hackers guess two unique admin passwords instead of one), front end & backend IP ban/blocking, and much more. We've even added a bonus feature in jomDefender that lets you find the best configuration for your website to optimize its page-load time. Featureas and Benefits of jomDefender: Remove template positions code, ‘?tp=1’ Remove generator tag Remove word Joomla! Remove HTML white space Remove Joomla! PHP header Add a new Admin password prompt Allow/Deny IP addresses to the back-end/front-end of your site Disable plugin functionality Caching mechanism Page execution time display File integrity checks Login/Logout CSRF prevention Get jomDefender today, and put an end to most hacker attacks on your Joomla website. Developed by 'corePHP' | 245 Michigan Avenue West | Battle Creek, Michigan | USA
p
CopySafe Web

CopySafe Web

Paid download | Site Security | ArtistScope
3
Score:
0
0 reviews
Joomla Extension for CopySafe Web Protection Insert CopySafe Web images into Joomla using "shortcode". This extension enables the insertion of CopySafe Web encrypted images into Joomla posts and pages with "shortcode". The resulting embedded image object is supported in popular web browsers across all Windows computers from XP to the latest versions, which comprise of 92% of net users. Copy protect images and all other web page content Safe from Print Screen and all screen capture software Encrypted images cannot be retrieved from browser cache Domain locked images cannot be used elsewhere Encrypted images stored on the server are safe from your web host Encrypted images cannot be saved or scraped CopySafe Web can be easily added to any pages or posts created by Joomla. By adding a CopySafe Web encrypted image to a web page using this Joomla extension, the object code and scripts to activate copy protection are very much simplified. When editing a page or post, click on the [C] icon above the HTML editor toolbar to insert the "shortcode", where the cursor was last placed in the text area. After uploading or selecting an existing image (from a previous upload), you can then nominate the security settings to use for the page or post. Different pages can use different security settings, for example, to allow the submission of web forms you may need to enable use of the keyboard.
m p
Authentication - Session Limit

Authentication - Session Limit

Paid download | Site Security | Michael Richey
3
Score:
0
0 reviews
If you want to limit concurrent logins in Joomla, there are few options. If you want granular control of concurrent logins based on your own access levels, this is the plugin for you. Features: Uses Joomla ACL to define login limits. Arbitrary limits - You can give users 1 or 10 (or more) based on ACL Option to make one Access Level immune. Users who are members of multiple limit levels are graduated to the largest limit.
p
CopySafe PDF

CopySafe PDF

Paid download | Site Security | ArtistScope
3
Score:
0
0 reviews
Joomla Extension for CopySafe PDF Protection Insert CopySafe PDF into Joomla using "shortcode". This extension enables the insertion of encrypted PDF documents created by CopySafe PDF into Joomla posts and pages with shortcode. The resulting embedded document object is supported in popular web browsers across all Windows computers starting from XP (92% of net users) up to the current version. Copy protect eBooks and PDF documents displayed online Safe from Print Screen and all screen capture software Encrypted documents cannot be retrieved from browser cache Domain-locked documents cannot be displayed elsewhere Encrypted documents stored on the server are safe from webmasters Encrypted documents cannot be saved or scraped CopySafe PDF documents can be easily added to any pages or posts created by Joomla. When editing a page or post, you may insert the short code by clicking on the [PDF] icon above the HTML editor toolbar where the cursor was last placed in the text area. After uploading or selecting an existing PDF class file (from a previous upload), you can then nominate the security settings to use for the page or post. Different pages can use different security and display settings:
m p
AVG Site Safety Badge

AVG Site Safety Badge

Free | Site Security | Denes Szekely (webGobe)
3
Score:
0
0 reviews
This module displays the AVG Threat Labs Safety Badge widget for your site in two variants, small or medium. You can choose from module parameters your preferred option. Small size (24 x 100) Perfect for checkout pages and besides purchase buttons Medium size (60 x 150) For footers and sidebars The badge helps your users find out about the AVG Threat Labs safety rating of your site, helping you increase the trust in your site among your visitors. The widget links through to the safety report of your website. Recommended for all Site Owners!
m