Drupal Vulnerability Scanning Module

Provides capability for Scalable Networks Drupal vulnerability management software to securely access your Drupal 8 or Drupal 9 website and read the versions of the installed packages and modules for security and vunerability management purposes


Scalable Networks CyberSec Australia
https://scalablenetworks.com.au

Secret token generated by Module

• Once the module is installed it will generate a secret token
• Secret-token can be accessed in Configuration -> Scalable Networks Vulnerability Scanner
• Secret-token needs to be registered on Scalable Networks Portal
• Once registered our CyberSecurity Scanners will start scanning your site for vulnerabilities

Module settings

• Module settings can be accessed via this route
  /admin/config/system/scalable-cybersec

Configuration management

Module will create a single file containing secret-token

scalable_cybersec.settings.yml

Module compatibility

• Designed to work with Drupal 8.x
• Designed to work with Drupal 9.x

Routes

• Module will expose Drupal's composer.json as json via webroot/composer.json/secret-token
• Module will expose Drupal's composer.lock as json via webroot/composer.lock/secret-token
• Module will expose available critical updates as json via webroot/updates/critical/secret-token
• Module will expose available non-critical updates as json via webroot/updates/non-critical/secret-token

This module allows for Scalable Network's DevOPS pipelines to securely access and read the existing version's of installed Drupal modules, their dependencies and packages + Drupal Core versions. This is used to generate daily compliance and vulnerability reports.