- Site Security

CedSecurityImages

CedSecurityImages

Free | Site Security | Galaxiis
3
Score:
0
69 reviews
Ever been to a site where you had to register and the registration form required that you type in the same phrase that is found in a hard-to-read image? Joomla! has now this possibility thanks to my extension CedSecurityimages. It will protect You against most spammers attempt! Features Support best online captcha services: Recapctha, KeyCaptcha and NuCaptcha Protect all JForm Field of all Joomla! extensions without ANY patches to Joomla! core or extensions Good and configurable captcha Why using CedSecurityImages? CedSecurityImages protect all Form in joomla without any hacks or Joomla core changes. CedSecurityImages produce CAPTCHA (an acronym for "Completely Automated Public Turing test to tell Computers and Humans Apart") is a type of challenge-response test used in computing to determine whether or not the user is human. CAPTCHAs are used to prevent bots from using various types of computing services or collecting certain types of sensitive information. Applications include preventing bots from taking part in online polls, registering for free email accounts (which may then be used to send spam) and collecting email addresses. You're part of our marketing team! At Galaxiis.com we receive feedback from our customers and consistently turn their comments and suggestions into new and improved features. Satisfaction Guarantee If you are not totally satisfied with our product or installation, we will promptly resolve any issues. In the event you are still not completely satisfied, we will refund your money.
c p
JB Hide

JB Hide

Paid download | Site Security | frog
3
Score:
0
2 reviews
Hide the Fact Your Website is Powered by Joomla with JB Hide Component and plugin Joomla websites are susceptible to a wide range of attacks including SQL injections, brute-force attacks, and unauthorized logins. There are many joomla security plugins can improve the security of your website by addressing common security issues such as changing the administrator account from admin. Current joomla security plugins don’t protect or hide joomla files. I have developed JB Hide Component and plugin because most hackers and bots know where to find important Joomla files and pages. A bot that is designed to target Joomla websites will therefore attack any website with Joomla files, and pass by those that do not. Just as hacking software takes advantage of the fact that all Joomla websites are structured in the same way, JB Hide takes advantage of the fact that software can only target your website if it knows your website structure. It does this by removing all evidence that your website is powered by Joomla. This makes it very difficult for hackers to infiltrate your website. Boost your security JB Hide control access to PHP files. It protects your site from almost 90% of SQL-Injection and eXSS attacks caused by direct access to PHP files. This means you can install unsafe plugins without worry abhout security. That makes impossible for hackers to find the path to php files and they can not identify the whether the joomla is used for website. How does it work The magic starts now… But before it please note everything is in its default location and we just control access to it. This guarantees maximum compatibility for our plugin. Redirect to 404 page from users page index?options=com_users Hide administrator link · Try this: http://flance.info/hideme/index.php?options=com_users · Not found!? OK. Redirected to custom 404 page · Try http://flance.info/hideme/administrator · NOT found try this http://flance.info/hideme/administrator/?test=1234 You get administrator page In html output of the site you get Change Joomla template directory, remove template Info from stylesheet, hash template folder name Instead of template/template_name/template.css you get bare/jt315/css/template.css Instead of template/template_name/template.js you get bare/jt315/css/template.js Change components/ modules / plugins/ media directory folder and hash folders’s name for AJAX url and CSS files , etc · Instead of media/jui /js/jquery.min.js flance.info/hideme/me/fhetq/js/jquery.min.js · Instead of intead of module/js/javascriptfilename.js you get /fakemodulename/ hashed – example :sw2ww /js/ javascriptfilename.js · Instead of intead of component/js/javascriptfilename.js you get /fakecomponentname/ hashed – example :sw2ww /javascriptfilename.js · Instead of intead of plugins/js/javascriptfilename.js you get /fakepluginsname/hashed – example :sw2ww/javascriptfilename.js Getting fake fol
c p
Spamhaus SBL/XBL Blacklist Site Protection

Spamhaus SBL/XBL Blacklist Site Protection

Free | Site Security | Lonnie Waugh
3
Score:
0
1 review
This is a simple plugin for Joomla 2.5.x and 3.x that will query the Spamhaus SBL/XBL database to see if your visitor's IP is listed. If they are, it will block them with a message letting them know why they are not allowed in the site and provide them a link to see WHY they were listed. That link also allows the opportunity to de-list themselves as well as provide instructions on how to clean up their system/network. People listed in this database are typically either willfully spamming or have been infected with some sort of botnet. It rarely has false positives! This is NOT meant to provide junk mail/form spamming behavior blocking, this will prevent someone who is listed from even ENTERING the site to begin with. Since I've implemented this on several of my own client's site we've noticed a massive reduction of brute force login attempts, fake registrations and people trying to run exploits to hack Joomla and that is because this is a System level plugin that executes before components, modules and before the page renders. This means they won't even be able to scan your site for things to exploit! CRITICAL: If you find yourself accidentally blocked from your own site, create a file called spamhausletmein.txt in your main Joomla installation folder and then immediately go to the plugin settings and add yourself to the whitelist parameter and then delete the spamhausletmein.txt file upon completion! It is also recommended for maximum effectiveness that you order this plugin as #1 in the plugin manager. Documentation is included in the plugin description once installed, you can read it for a full description of all settings and what they do before activating! Features List: Operates quickly using simple DNS queries Logs entries to spamhaus_log.text in your main Joomla installation folder ( logs blocks and whitelist exemptions ) Provides a failsafe method incase you're locked out of your own site Whitelist by IP functionality.. you can add multiple ip's separated by commas Options to log blocked connections, whitelisted connections and failsafe connections Option to enable protection can for the front-end and/or back-end administration Supports Joomla's 1-click update system It's FREE Please note: I am in NO way associated with the Spamhaus project, I just decided to write this because on one of the servers I manage, I'm running mod_spamhaus and found it to be extremely effective. I decided to put this together on servers where I can't enable that Apache module.
p
jomDefender

jomDefender

Paid download | Site Security | 'corePHP'
3
Score:
0
1 review
Most hacker attacks are preventable. Instantly protect your website from most attacks with jomDefender, a must-have first line of defense for every Joomla-powered website. Each day, Joomla websites all over the world come under attack from ruthless hackers who deface front pages, delete critical data, upload malicious viruses, and steal sensitive customer information. Sadly, most hacker attacks cost owners dozens of hours and often thousands of dollars to repair. jomDefender is a must-have plugin to help you avoid costly downtime and embarrassing hacker attacks. Casual hackers don’t want to work too hard to gain entry to a site or server. They simply scan websites, looking for known identifiers that tell them whether a site is running a software they're particularly skilled at breaking and entering. Unfortunately, Joomla is often targeted by hackers, due to its popularity, and also due to many site owners who do not properly protect themselves from intrusion. Running a site without jomDefender is like leaving your car running, with the doors wide open, in a crowded parking lot, in the bad part of town. Every single day. You're inviting trouble, and sooner or later, that trouble will find you, and take you for a ride you'll never forget. Once hackers can identify the software, they will run pre-fabbed hacker scripts to help them gain control of your site, and the rest is history. All your content, data and customer information could then be wide open for the hacker to take, and often sell to others too. jomDefender keeps your Joomla applications hidden and protected, to prevent attacks from casual hackers, by scrubbing known Joomla identifiers from your site. Additionally, jomDefender also protects your site with security features such as an extra admin login screen (makes hackers guess two unique admin passwords instead of one), front end & backend IP ban/blocking, and much more. We've even added a bonus feature in jomDefender that lets you find the best configuration for your website to optimize its page-load time. Featureas and Benefits of jomDefender: Remove template positions code, ‘?tp=1’ Remove generator tag Remove word Joomla! Remove HTML white space Remove Joomla! PHP header Add a new Admin password prompt Allow/Deny IP addresses to the back-end/front-end of your site Disable plugin functionality Caching mechanism Page execution time display File integrity checks Login/Logout CSRF prevention Get jomDefender today, and put an end to most hacker attacks on your Joomla website. Developed by 'corePHP' | 245 Michigan Avenue West | Battle Creek, Michigan | USA
p
CopySafe Web

CopySafe Web

Paid download | Site Security | ArtistScope
3
Score:
0
0 reviews
Joomla Extension for CopySafe Web Protection Insert CopySafe Web images into Joomla using "shortcode". This extension enables the insertion of CopySafe Web encrypted images into Joomla posts and pages with "shortcode". The resulting embedded image object is supported in popular web browsers across all Windows computers from XP to the latest versions, which comprise of 92% of net users. Copy protect images and all other web page content Safe from Print Screen and all screen capture software Encrypted images cannot be retrieved from browser cache Domain locked images cannot be used elsewhere Encrypted images stored on the server are safe from your web host Encrypted images cannot be saved or scraped CopySafe Web can be easily added to any pages or posts created by Joomla. By adding a CopySafe Web encrypted image to a web page using this Joomla extension, the object code and scripts to activate copy protection are very much simplified. When editing a page or post, click on the [C] icon above the HTML editor toolbar to insert the "shortcode", where the cursor was last placed in the text area. After uploading or selecting an existing image (from a previous upload), you can then nominate the security settings to use for the page or post. Different pages can use different security settings, for example, to allow the submission of web forms you may need to enable use of the keyboard.
m p
Authentication - Session Limit

Authentication - Session Limit

Paid download | Site Security | Michael Richey
3
Score:
0
0 reviews
If you want to limit concurrent logins in Joomla, there are few options. If you want granular control of concurrent logins based on your own access levels, this is the plugin for you. Features: Uses Joomla ACL to define login limits. Arbitrary limits - You can give users 1 or 10 (or more) based on ACL Option to make one Access Level immune. Users who are members of multiple limit levels are graduated to the largest limit.
p
CopySafe PDF

CopySafe PDF

Paid download | Site Security | ArtistScope
3
Score:
0
0 reviews
Joomla Extension for CopySafe PDF Protection Insert CopySafe PDF into Joomla using "shortcode". This extension enables the insertion of encrypted PDF documents created by CopySafe PDF into Joomla posts and pages with shortcode. The resulting embedded document object is supported in popular web browsers across all Windows computers starting from XP (92% of net users) up to the current version. Copy protect eBooks and PDF documents displayed online Safe from Print Screen and all screen capture software Encrypted documents cannot be retrieved from browser cache Domain-locked documents cannot be displayed elsewhere Encrypted documents stored on the server are safe from webmasters Encrypted documents cannot be saved or scraped CopySafe PDF documents can be easily added to any pages or posts created by Joomla. When editing a page or post, you may insert the short code by clicking on the [PDF] icon above the HTML editor toolbar where the cursor was last placed in the text area. After uploading or selecting an existing PDF class file (from a previous upload), you can then nominate the security settings to use for the page or post. Different pages can use different security and display settings:
m p
AVG Site Safety Badge

AVG Site Safety Badge

Free | Site Security | Denes Szekely (webGobe)
3
Score:
0
0 reviews
This module displays the AVG Threat Labs Safety Badge widget for your site in two variants, small or medium. You can choose from module parameters your preferred option. Small size (24 x 100) Perfect for checkout pages and besides purchase buttons Medium size (60 x 150) For footers and sidebars The badge helps your users find out about the AVG Threat Labs safety rating of your site, helping you increase the trust in your site among your visitors. The widget links through to the safety report of your website. Recommended for all Site Owners!
m
Login with TREZOR

Login with TREZOR

Free | Site Security | Minitek
3
Score:
0
0 reviews
A password-less login for Joomla immune to keyloggers or phishing. TREZOR is known as the most secure bitcoin hardware wallet. "Login with TREZOR" is a Joomla plugin that provides secure user authentication via a password-less login, using the TREZOR device. "Login with TREZOR" enables you to login securely with a click of a button. The TREZOR device holds securely secret keys and uses them to sign messages without actually ever exposing these secrets. Thus when using "Login with TREZOR", no user password is needed and no reusable secret can be ever captured by keylogger or other malware. Please note that in order to use this plugin you must first purchase a TREZOR device at https://trezor.io/.
p
TextCaptcha for Joomla

TextCaptcha for Joomla

Free | Site Security | Peter Bui
3
Score:
0
0 reviews
Do you hate reCaptcha and want to use an alternative that is a little bit more accesible that that really hard to use one by Google. Textcaptcha is a perfect alternative to reCaptcha. It asks logical questions such as, "Out these three words, which is a color: Red, ball, bat." With the answer being RED. You may also get mathematical questions such as, "What is one plus 11". Great to try and best of all it is free.
p
StopTheHacker Trust Seal

StopTheHacker Trust Seal

Free | Site Security | Denes Szekely (webGobe)
3
Score:
0
0 reviews
Why use a trust seal? Show your visitors that you care about security Show your hackers that you aren't a sitting duck waiting them to hack your site anymore Trust seals have been shown to increase conversions by more than 10% You will receive affiliate rewards when visitors sign up and pay StopTheHacker for service after clicking certain links in your detailed trust seal security information Stop The Hacker! In order to use the module, you first need to set up your StopTheHacker account (link provided in the module interface). After you set up your account you can add your domains to it. Each domain will have it's own tab in your profile. You will need to check these tabs, take a look to the URL, which will look like: https://panel.stopthehacker.com/overviews/order-summary/order/130389. The number at the end of the URL, like '130389' in the above example is the SiteID of your domain, that's one of the parameters you should enter in the module configuration. The other parameter you should enter is your domain name.
m
text2image

text2image

Free | Site Security | Schefa
3
Score:
0
0 reviews
This Plugin converts any text into a transparent image file (png or base64), so that you can protect sensitive Information against bots. Use the following syntax in your article For a more specific output you can add and modify these parameters. Make sure that you upload the ttf-fontfile in the plugins-folder, if you want to use another font.
p
pFirewall

pFirewall

Free | Site Security | Ionut Lupu
3
Score:
0
0 reviews
pFirewall is a simple plugin for filtering your website traffic and block possible malicious activity. By allowing you to create your own rules, pFirewall can be used if you want to prevent any automated activity like brute force login or mysql injection. The construction of the rules is inspired by NAXSI rules.
p
Aimy Captcha-Less Form Guard PRO

Aimy Captcha-Less Form Guard PRO

Paid download | Site Security | Aimy Extensions
3
Score:
0
0 reviews
Keep your forms spam free with user friendly Captcha alternatives. The system plugin uses well known anti-spam tests that do not require user action: minimum fillout time bot trap This way you can protect your website from spam bots with methods that are better for website usability and accessability than Captchas. Aimy Captcha-Less Form Guard is easy to use and configure: Enable the plugin, configure your preferred methods and select Aimy Captcha-Less Form Guard in Joomla's global configuration dialog as default Captcha. The PRO version additionally supports: DNS Blackhole Lists extended logging via PHP visual hints for users for minimum fillout time
p
GW Spam Protect

GW Spam Protect

Free | Site Security | GreenWood Studio
3
Score:
0
0 reviews
GW Spam Protect - free plugin that will protect your websites on Joomla and VirtuaMart from automatic registrations. Standard built-in Joomla ReCaptcha from Google, which does not meet modern standards of usability. Anyone will tell you that he does not like entering captcha code, not to mention the fact that for a long time, there are many services that are able to recognize and enter it automatically. But to win the automatic registration is easier than you think. How it works: * The plugin automatically adds a checkbox (checkmark) in the registration forms Joomla and VirtueMart. * Checkbox starts loading only after full page load with a delay of a few seconds , so that robots do not see the checkbox and not be able to put a check mark in it. Features: * Compatible with Joomla 2.5 and Joomla 3; * Conversion growth compared with other types of anti-spam; * Convenience for users; * Translated into three languages: Russian, Ukrainian, English; * Plugin connection requires jQuery, if your site is no jQuery, the plugin will automatically load the it; * Easy to use - just install and publish the plugin; * FREE.
p
JProCheck-In

JProCheck-In

Paid download | Site Security | JPro Extensions
3
Score:
0
0 reviews
JProCheck-In, is the Gate Control to your Joomla!™ 3+ administrator area. JProCheck-In is the system plugin that protects your Joomla!™ administrator login area and prevents access attempts from unauthorized users, using a secure system and an emergency recovery system. It's Joomla!™ R3ADY! Gate Control to the administrator login area JProCheck-In was developed to protect and secure your Joomla!™ 3+ administrator area from unauthorized visitors. Your Joomla!™ 3+ administrator area, will only be available with the defined JProCheck-In Ticket and Boarding pass. With the JProCheck-In Emergency recovery system, you'll be able to recover your check-in url in case you forget it. Options include: - Log unauthorized attempts to Joomla! log file; - Use the double credentials access system - "Ticket" and "Boarding pass" for increased security; - Set your own customized administrator access url; - Set your own emergency recovery credential; - Redirect unauthorized access attempts to different locations - Emergency url recovery request, sent to the administrator email with requester IP address;
p
V4 Security

V4 Security

Free | Site Security | Hung Le
3
Score:
0
0 reviews
V4 Security is a free plugin which supports: 1. Backend Protection 2. Login Attempts 3. Password Complexity (password rule) You can read more here: https://vivavivugeek.blogspot.com/2014/06/joomla-plugin-for-enhancing-security.html
p
Sur.ly

Sur.ly

Free | Site Security |
3
Score:
0
0 reviews
Sur.ly alters the outbound links on your site so that visitors can view external target pages without leaving your domain. Sur.ly plugin replaces the outgoing links in comments, posts, etc (except for whitelisted links of your choice) with the links leading to intermediate pages on your subdomain. When users follow these links, they will seamlessly view the external target pages while technically staying within your domain. Sur.ly accompanies, informs and protects users when they follow outbound links, so they can never bump into an adult or malware-infected content under links posted by other visitors. Sur.ly can help you to: Get rid of toxic and unsolicited outbound links. Turn any risky outbound links into safe internal links to avoid Google penalty. Cope with fake users signing up for your site to get backlinks. Recapture users leaving via outbound links. Keep users within your domain longer to reduce the bounce rate. Shorten links down to neat and convenient alphanumeric identifiers.
c p