Add additional checks to your favourite Captcha Solution. This plugin when published as main Captcha plugin is able to - randomly rotate other Captcha plugins - check visitors IP address against Blacklists (StopForumSpam.com, SpamHaus.org, Sorbs.net, SpamCop.net, UceProtect.net, DroneBl.org, BotScout.com, Project HoneyPot, manually defined blacklist of IPs or IPs range) - check registered user em...

Joomla >= 4 only Backdoor is the Joomla 4/5 kompatible Version of the famous AdminExile plugin from Michael Richey (RicheyWeb). Backdoor protects your backend / administration part of your site by using URL access keys (query parameters). So, attempts to access the administrator login page will be met with either a redirect to your homepage, a 404 error, or a redirect somewhere else. This is e....

This service is aimed at webmasters who want to effectively protect themselves against so-called "bad bots" and behavioral networks. Free of charge you can use the list published on https://www.ip-bannliste.de/aktuelle-bannliste.html to protect your website. This list is already integrated in the component - regardless of whether you want to use our AutoUpdater or not. Please note: The IP Bannli...

WEBSITE BLACKLIST CHECK AND MONITOR Google blacklists more than 12,000+ websites every day. You can loose up to 99% of traffic if your website has been blacklisted. Google protects its users from dangerous websites that may show up in search results and if your website has dangerous behaviour it gets banned by Google and you loose customers and visitors. Google Chrome blocks all your visitors fro...

The System - Content Security Policy plugin(s) bring this much needed security functionality to Joomla. The fun doesn't stop there - this set of plugins also implements the report-uri feature of the CSP. You can capture your own csp-report via the included AJAX plugin, and have it sent to you nightly using the included CLI script. If you want to browse the data - the AJAX plugin offers a handy...

CMS-Scurity Component is a stunning Security & Firewall extensions which does not only looks good but also provide security options for your website! Every modern website needs a Firewall which will protect the sensitive data and users with advanced firewall mechanisms. Advanced and stunning looking dashboard with informative security and firewall options. Simple check lists will help you find sec...

yKhoon Lock Account Advanced Edition (previously known as yKhoon Advanced Lock Account) is an extension that lock your visitor user account when there is multiple log in using the same account. When your visitor user account is locked, the extension will send the visitor a notification email based on the email address provided during registration. The notification email which contain all essential...

HaveIBeenPwned.com compromised passwords check. HaveIBeenPwned.com is project gatehring informations about password breaches, and collecting compromised passwords. It means, if your password (not necessarily password of your account) was somewhere published by hackers, who hacked some passwords database, it will be listed there. And if so, the password is propably not secure anymore. n3t HaveIBe...

Force2faUsergroup Plugin This plugin allows to force users to set up 2FA in a specific user group. Features This plugin allows to force users to set up 2FA in a specific user group. Setup the groups to force a 2FA setup on the next login. Configuration Initial setup the plugin Download the latest version of the plugin Install the plugin using Upload & Install Enable the plugin System...

EXP PassField is a javascript that simplifies creation of sophisticated password fields. *** Version 1.2 *** Add warning tells you all of the rules...

Prevent one or more user groups from changing their passwords! Enforce static passwords for selected groups. A similar extension exists for J1.5, but since it hadn't been updated - I created a 2.5 compatible version. Usage is simple - enable the plugin after selecting which user groups will be prevented from password changes. When saved, the users in those groups will not be presented with the...

FetchMetadata Plugin This Joomla Plugin helps to protect your sites by using Fetch Metadata Request Headers (w3c-spec) Features This Joomla Plugin helps to protect your sites by using Fetch Metadata Request Headers The implemened rules are: - Step 1: Allow requests from browsers which don't send Fetch Metadata - Step 2: Allow same-site and browser-initiated requests - Step 3: Allow simple top-...

ochStopDMR - Stop User Registrations with Disposable Mail addresses on your website! Are you tired of people using disposable email addresses to register on your website? Do you want to protect your users from spam and abuse? Then you need ochStopDMR! What is ochStopDMR? ochStopDMR is a Joomla! system plugin that prevents users from registering on your website using disposable email addresses....

Password Generator J! is a small, fast generator for passwords (with Easy and Safe Mode). Features Length of passwords (max. 20) Capital letters Lower-case letters Numbers Special characters Multiple passwords per generation process (max. 30) Easy mode - noticeable passwords Safe Mode - secure passwords Languages - English / German Support The extension is completely free, but you need a sub...

LazyDbBackup is based on LazyBackup by Stefan Granholm. (GNU/GPL 2 or over license). This plugin was internationalised (for Joomla! 1.5 and 1.6) and modified to run with Joomla! 1.6 and now Joomla! 2.5 (Joomla! 3.4.6 too). Two versions: PDO (doesn't work on some servers) and Mysqli. All versions come now with English, French, German translation files (thanks to Nathalie Laurent (n-at-work.net) for...

AskMyAdmin prevent login to back-end of site till entering correct key=value pair. This is an extended version of plg_backendtoken plug-in. Main idea of this plug-in - to prevent login to administrator's panel by using standard URL. It will hide your admin part of site. Supported platforms Plug-in works on Joomla 3.x This plug-in is ready for Joomla 4 Alpha Supported languages English (en-...

DataSafe Pro is professional database backup. It generates a snapshot of your full Joomla database, which allows you to quickly revert your content, whenever you want. It's ideal for creating a quick backup before you start any changes to your website. And to restore your Joomla database from a backup it's easy. Either select a DataSafe backup stored online, or upload a backup stored on your lo...

The Password Control system plugin enforces password changes upon registered site users. The change can be enforced for the initial (first) connection only, and/or for periodic changing. Optionally the users can be redirected back to the home page when a password change is enforced. There is the ability to define 'exempt' users, i.e. users for whom the administrator does not want to enforce pass...