Drupal audit

Attico International offers Drupal audit services aimed at identifying issues on your website and resolving them to ensure your Drupal site is optimized for user experience, SEO, security, and performance. Whether you require a brief site overview focusing on specific areas or a comprehensive analysis covering all aspects, we provide the expertise you need.

drupal-audit

Process

By following the three-step process, we ensure a thorough and systematic approach to Drupal site audits, helping clients identify and eliminate potential problems in a short time.

process-1
Discovery

The initial step involves collecting technical information about the Drupal site under audit and evaluating its key parameters, including but not limited to performance metrics, security measures, SEO configuration, and overall health.

Audit

Attico conducts a thorough audit of the Drupal website by analyzing the information obtained. We identify potential problems, weaknesses, and areas of improvement and categorize them based on severity.

Delivery

Our team prepares a detailed audit report outlining the summary of identified issues, their root causes, and our recommendations for addressing them effectively and presents those findings to the clients.

process-2

Drupal analysis

As a rule, the most common causes of site problems lie within the Drupal installation itself, including its configurations, customizations, and add-ons. Therefore, we always carefully analyze the Drupal core and modules from both backend and frontend.

Frontend

The initial step involves collecting technical information about the Drupal site under audit and evaluating its key parameters, including but not limited to performance metrics, security measures, SEO configuration, and overall health.

Backend

Attico conducts a thorough audit of the Drupal website by analyzing the information obtained. We identify potential problems, weaknesses, and areas of improvement and categorize them based on severity.

Modules
  • Update & patch check
  • Obsolescence & backward incompatibility analysis
  • Alternative module suggestion
  • Custom module review
Roles & permissions
  • User–role conformity check
  • Role–permission conformity check
  • Permission–business logic conformity check
Core
  • Update & patch check
  • Customization detection
  • Watchdog logs review
Theme
  • Coding standards review
  • Coding conventions review
  • File structure analysis

User experience audit

User experience auditing by Attico entails a comprehensive evaluation of your website from the user’s viewpoint, covering navigation and interaction. By delving into how visitors engage with your site, we uncover factors contributing to low conversion rates and high bounce rates and provide recommendations on making your site more intuitive and engaging.

Interaction

To help you increase the user interaction on your website, we check:

  • Interactive element operability
  • Contact form operability and best practice
  • Search efficiency
  • Search result adequacy
  • Filter operability
Navigation

To ensure ease of navigation, we analyze:

  • Sticky menu behavior
  • Pagination operability
  • 404 pages
  • Incorrect redirects
  • Redirect loops
  • Errored pages
  • Broken links

SEO audit

Entrust your website’s SEO audit to Attico’s specialists, who have a proven history of delivering all-round audits and improving site ranking. Our SEO team easily finds on-page, off-page, and technical issues affecting your search engine positioning.

Combining our knowledge with the use of tools like Google Search Console, Screaming Frog, Ahrefs, and Semrush, they check the following aspects:

On-page
  • URLs
  • Self-linking pages
  • Hreflang
  • Site structure & page hierarchy
  • Title, meta, H1–H6 tags
  • Breadcrumbs
  • Open Graph & JSON-LD implementation
  • Rich snippet operability
  • Missing alts
Indexing
  • Robots.txt
  • Sitemap.xml
  • Duplicate content
  • Follow/nofollow & index/noindex correctness
  • Canonical tags

Security review

While Drupal is fairly safe thanks to its security team, strong coding standards, and a strict community code review process, vulnerabilities could arise when customizing the Drupal core.

Regular security reviews are imperative to find potentially unsafe practices and fix them before they cause harm. We will scrutinize your website security and spot threats quickly without leaving hackers a chance to gain access to it.

security-review

We carry out the following security checks:

  • SSL certificate verification
  • HTTPS availability check
  • Static code analysis & scanning
  • Drupal file permissions review
  • Sensitive file accessibility check
  • HTTP security headers check
  • Input sanitization check
  • Leak of secrets check

Environment audit

Our approach to conducting a Drupal environment audit involves a rigorous examination of the website server, database, Apache/NGINX, and PHP components.

We verify that your site has the latest updates and patches installed, review access and error logs, test firewall settings, perform configuration checks — do everything to ensure your Drupal environment is secure and stable.

CI/CD audit

In the framework of CI/CD audit, we analyze code and structure of build, test, and delivery pipelines to verify their compliance with best practices and offer actionable recommendations to enhance delivery stability and predictability, ultimately reducing expenses associated with code reviews.

Reviewing Git enablement and evaluating the branching strategy to ensure it aligns with the specific project requirements. Verifying that the repository doesn’t contain any dependencies, excessive files, or distributable files built with CI/CD pipelines, and follows other best practices for code quality and streamlined workflows.

Post-audit support

If the audit identifies areas for improvement, we provide follow-up services and post-audit support to implement our recommendations. Following the site audit, we provide you with a cost estimate to address all identified issues and you can immediately opt into having us fix them.

Privacy and data security

You should not worry about privacy and security of your website data during Drupal audit, since we employ several best practices to protect your business:

  • Utilizing secure data transfer protocols when accessing audited resources.
  • Implementing anonymization techniques for sensitive content, including end-user data and personal information such as emails, usernames, and passwords.
  • Signing an NDA to ensure that all your information remains strictly confidential.

We respect our clients’ security policies and are adaptable to utilizing any tools mandated by your organization for accessing audited systems.

Frequently Asked Questions 

A comprehensive Drupal audit can take from a few days to a few weeks. The duration can vary significantly depending on factors such as the website size, the amount of code and content, code complexity, and your goals.

Generally, businesses should perform audits on a regular basis to ensure continued and stable operation of their websites. We recommend conducting a comprehensive audit annually or semi-annually for more specific needs.

Yes, we have an expert Drupal team that can make whatever changes we suggest. Our developers, designers, and SEO specialists are ready to assist you in executing the necessary improvements to optimize your site.

Let’s talk!

Get a complete Drupal audit by Attico’s team to discover the growth potential of your website!