On this page
Detection and Prevention
This documentation needs work. See "Help improve this page" in the sidebar.
These modules may help in detection and prevention of security issues on a Drupal site. Unfortunately, some of them require an skilled operator or developer to use the module well (coder module, for example, includes security vulnerability checks, but is only usable by a developer).
Detection modules
Detection is the status where a security issue or event has been detected, not meaning a vulnerability is exposed in your Drupal site, or an attack succeed againts the Drupal site. This modules may help you to identify these issues:
[Note - documentation previously referred to outdated Drupal 6 and 7 modules. A new list is required]
Prevention modules
The following modules provide information about the security status of a site, including whether its modules and core are up-to-date, etc.
- Coder: Coder is a developer-oriented module that provides the
phpcs(PHP_CodeSniffer) library, and theDrupalandDrupalPracticephpcs standards. This module can be used to assist with code review and version upgrade. The module supports a plug-in extensible hook system so contributed modules can define additional review standards and upgrade routines, including security evaluation.
Help improve this page
You can:
- Log in, click Edit, and edit this page
- Log in, click Discuss, update the Page status value, and suggest an improvement
- Log in and create a Documentation issue with your suggestion
