the advanced security against XSS, CSRF, SQL injection, DDoS, Webshell (malicious code), weak configurations. there are extensions only for for sponsors available. Generally, the default security is sufficient to you in our framework. so, you have to use it after did understand what is this.