Hack-Info

“Hack-Info” – free add-on for “iThemes Security” to improve the perception of information about events, which is important to quickly and in detail see and understand. Without the need for unnecessary clicks and conversions. “Hack-Info” notifies the site administrator by providing a detailed list of IP addresses, requests – attempts to scan resources and search for passwords with names.

Download

  • An additional level of security for your site.
  • Even without going to the site admin area, you will be informed about the activity of the current day.
  • Any person can be a recipient of notifications. Not necessarily the Administrator.
  • Adjustable interval for the formation of the Digest.
  • Compatible with earlier versions of “iThemes Security”. If for some reason you are forced to use a simple but effective old version.
  • The e-mail report received contains full and detailed information about the nature of attempts to hack your site:
    • In cases of Brite Force, user names are displayed.
      So, one glance is enough for you to understand what you’re dealing with: a routine search or a targeted attack on an already compromised name.
    • In cases of URL scanning, requests are displayed.
      Timely analysis of such requests allows you to draw conclusions about which Plugins, Themes or Scripts are vulnerable, and in time to abandon their use in their projects.
    • The information digest is compact and minimalistic, but at the same time it easily and visually gives a complete information picture. You do not have to go to your site to get more details.
      Therefore, even being outside the usual workspace, on a slow Internet, but having the ability to read mail – you will be fully informed, and therefore, if necessary, you can make the necessary and fast decisions.
      And this approach is many times more effective than messages like: “To see the list of blocked IP addresses and to know the parameters of requests – click on the button …” And then, still it will be necessary to login …
Скриншоты:

 


Users Login Monitor

Users Login Monitor” – A freeware plugin, for daily-notify site administrator, about users who logged in during the day.

Download

  • Ext Security.
  • Even without going to the site admin area, you will be informed about the activity of the current day.
  • Any person can be a recipient of notifications. Not necessarily the Administrator.
  • Now in the Admin console you have a new widget with a list of users in order of decreasing Login time.
  • Determine and save the IP address, device and browser details, from which the was made Login. (if your server is configured correctly)
  • It is important to understand that the time to enter the site and the time of the last activity of the user are different events.
Скриншоты:

 


New Users Monitor

New Users Monitor” – A freeware plugin that will help you quickly find out that you have already been hacked. This is main task of ‘NUM’. Well, in general, ‘NUM’ will inform about the appearance of a new user in WP. If you are an administrator, then such an event is important to you.

Download

  • Ext Security.
  • You may not know that your site has already been hacked. Set the scan period for the Database. (1 hour – default)
  • There are many ways to add a new user to the system, without your knowledge. (even with the inactive WP option “Anyone can register”)
  • This plugin will promptly notify you that a new user has registered on your site. If a new user appears (and if it is not legitimate, then it is more likely that it will be an Administrator), you will be notified by mail.
  • Now the console has a widget that displays all new users. Now in the Admin console you have a new widget with a list of new users, and those that you have not yet confirmed are highlighted in red. A new user, even with Administrator rights, can not confirm himself.
Screenshots:

 


Captcha Code Authentication

Improved version of a nice authorization plugin.

The basic number of characters in the Captcha, Belarusian bots now have learned to recognize. I’m tired of seeing a large number of entries about the attempts matching password on the login page in the site’s security log files.
Therefore, it was decided to complicate the life of kids-hackers army. And yes – it helped.

Continue reading “Captcha Code Authentication”