phpSecurePages is a PHP module to secure pages with a login name and password. It can handle multiple user groups (each with their own viewing rights), store data in a MySQL database or a configuration file, and be used to identify your Web site viewers. It also has multiple language support and optional IP-based access restrictions.
mod_auth_openid is an authentication module for the Apache 2 Web server. It handles the functions of an OpenID consumer as specified in the OpenID 2.0 specification. Once installed, a simple configuration directive can secure a directory or application on your Web server and require a valid OpenID/XRI identity. You can configure trusted/untrusted identity providers along with a number of other options.
check_websites is a very simple virus scanner for Web sites. It checks a document root directory for files with the .js extension and for codewords which might be a hint of defacement or SQL injection. This tool is made to run as a cronjob. There's no output on the screen, but it generates a logfile and mails output.
dm.KittenAuth implements a CAPTCHA validation solution using groups of images and associated questions. It can generate a form to let a user pick images for one or more groups of images stored in a MySQL database. The user must pick the right images according to the questions associated to the group of images being presented.
PHP Tarbackup is a simple class that allows backing up an entire Web site. It automatically works around timeout limits by splitting the job into multiple requests, allows tarball archive creation and updates, and comes with the Veloce script, which is very useful to automatically unpack tar.gz archives remotely and skip long waiting times due to FTP uploads.
Nikto is a Web server scanner which performs comprehensive tests against Web servers for multiple items, including over 3200 potentially dangerous files and CGI scripts, versions on over 625 servers, and version specific problems on over 230 servers. Scan items and plugins are frequently updated and can be automatically updated (if desired).
SafeWeb is a personal homepage middleware environment for Apache (including 1.3 and 2.0) on Unix. It provides page hit counting, visitor logging, server-side includes (SSI), safe setuid CGI (with or without suEXEC) by installing appropriate CGIs, and .htaccess for a single user, without the need of becoming root or restarting Apache. SafeWeb is easy to install and easy to use.