Drupal is a registered trademark of Dries Buytaert
Protected Pages 3.0.0 Major update available for module protected_pages (3.0.0). Commerce Core 3.3.8 Minor update available for module commerce (3.3.8). Search API HTML Element Filter 1.0.7 Minor update available for module search_api_html_element_filter (1.0.7). Layout Builder Reorder 2.0.1 Minor update available for module layout_builder_reorder (2.0.1). Ban 1.1.0 Minor update available for module ban (1.1.0). Field Formatter Range 2.0.0 Major update available for module field_formatter_range (2.0.0). Field Formatter Range 8.x-1.8 Minor update available for module field_formatter_range (8.x-1.8). Varbase Media Header 9.2.1 Minor update available for module varbase_media_header (9.2.1). Search API Solr 4.3.11 Module search_api_solr updated after 14 months of inactivity (4.3.11). Provus Mega Menu Module provus_mega_menu crossed 1,000 active installs.

This module enhances Drupal website security by preventing brute-force attacks, monitoring and blocking malicious IP addresses, enforcing strong passwords, and offering denial-of-service protection. It provides enterprise-level security to protect your site from hackers and malware.

Website Security - Secure Login / Network Security – This module provides login security, registration security, brute force attack prevention, IP monitoring and IP blacklisting, DOS attack prevention, strong password enforcement, etc. We provide you enterprise-level security, protecting your Drupal site from hackers and malware.

If you require any Single Sign On (SSO) application or need any help with installing this module, please feel free to reach out to us on our 24*7 support at [email protected] or Contact us.


Know more Setup Guide Our unique case-studies

Features:

Brute Force Protection (Login Security)

You can keep track of user’s login attempts and set notifications for administrators and users of unusual activities if someone exceeds allowed failed login attempts. You can set the number of allowed login attempts and protect the user accounts from attack.

  • Set number of login failures before blocking an IP
  • Set time period for which IP should be blocked
  • Set number of login failures before blocking an User
  • Set time period for which the user should be blocked
  • Show remaining login attempts to user
  • Set number of login failures before detecting an attack

IP Blocking

Manual and automatic blocking of IP address. This will help to protect your site accessing from unwanted IP addresses and crawlers, which uses your server resource and bandwidth.

  • Country Blocking - If you have a website that gets inundated with SPAM or hacking attempts from visitors or bots originating from certain countries we can help you block those attempts. You can block the request coming from specific countries (Listed by admin).
  • IP Range Blocking – You can also block a complete IP range for which any request from an IP within that IP range will be denied

IP Whitelisting

Many times, we don’t need to monitor any request from our own trusted network. In this case, we whitelist the IP and let them bypass. There can be issues if anyone attacks from their own network. To protect this, every request is monitored to a certain level to verify the request does not affect the website.

Reporting

You get the option for filtering reports with various criteria like username, IP address, and status of the report entries. Also, you can download reports in CSV format.

DOS (Denial of Service) Protection

Protect your resources from DOS attacks by slowing down attackers by delaying response and increasing delay in each of his requests and eventually blocking them entirely.

Allow Role Login by IP Configuration

This feature allows users with specific roles to login with an IP address within the IP range provided. If the IP address is not found within the specified range then the user will be not allowed to log in.

Risk-based authentication

Risk-based authentication allows the application to challenge the user for additional credentials only when the risk level is appropriate. It is a contextual authentication based on device, location, time and user behavior.

Other Features:

  • Notify administrator if IP address is blocked
  • Notify users for unusual activity with their account
  • Advanced User Verification during registration
  • Customized Email Templates

Benefits:

  • 24x7 support.
  • Compatible with Drupal 9.
  • Easy to configure
  • Step by Step guides and documentation

If you have any questions or want to know more about the module, please feel free to Contact Us or mail us at [email protected]

Activity

Total releases
3
First release
Jun 2025
Latest release
6 months ago
Releases (12 mo)
1 ▼ from 2
Maintenance
Active

Release Timeline

Releases

Version Type Release date
3.0.1 Stable Jan 12, 2026
8.x-1.22 Stable Jul 1, 2025
3.0.0 Stable Jun 12, 2025