Walkercorp Sentinelle – Security, Firewall, Anti-Bot & Malware Scan

Description

Walkercorp Sentinelle protects your WordPress site and explains every protection in plain language. The plugin works on its own, with no account and no external service, and only offers protections that are actually active.

Main features:

  • Camouflage: hides the WordPress version, adds security headers, blocks user enumeration, disables the file editor, and blocks access to readme.html and license.txt.
  • Login and access: limits login attempts, blocks common usernames, hides login error details, sends an alert on new logins, and enables automatic logout.
  • Firewall: application firewall (SQL injection, XSS, directory traversal), rate limiting per address and per subnet, blocking of vulnerability scanners, blocking of aggressive crawlers (Baidu, Bytespider, SEO and AI bots), anti-crawl protection for WooCommerce filter URLs, blocking of sensitive file probing, automatic banning of scanners, IP allow and deny lists, XML-RPC protection and REST API restriction.
  • Server-level blocking: on Apache or LiteSpeed, optionally writes rules into the .htaccess file to block before PHP runs; ready-to-copy rules are provided for Nginx and Cloudflare.
  • File scan: scans the uploads folder for hidden executable files and suspicious code.
  • Traffic analysis: a real-time chart and a live connection feed (IP address, type, requested page).
  • Threat log and a security summary widget on the dashboard.

External services

This plugin does not contact any external service. All protections run locally on your site.

Privacy

For the security log and traffic analysis, the plugin stores IP addresses of visitors and blocked requests, along with the requested page, locally in your own database. This data stays on your site, is never sent to any third party, and is purged automatically. You can remove everything by enabling the data-erase option before deleting the plugin.

Captures d’écrans

Installation

  1. In the admin, go to Plugins, then Add New, then Upload Plugin.
  2. Choose the walkercorp-sentinelle.zip file and click Install.
  3. Activate the plugin. The Walkercorp Sentinelle menu appears in the sidebar.

FAQ

Does the plugin require an account or a paid service?

No. Walkercorp Sentinelle works entirely on your own site and does not contact any external service.

Will it block my real visitors?

No. The protections target automated bots and attacks. Regular visitors are not affected.

What if a protection locks me out?

As a safeguard, you can add the following line to wp-config.php to restore standard access:
define( ‘WALKERCORP_SENTINELLE_DISABLE_HARDENING’, true );

Avis

Il n’y a aucun avis pour cette extension.

Contributeurs/contributrices & développeurs/développeuses

« Walkercorp Sentinelle – Security, Firewall, Anti-Bot & Malware Scan » est un logiciel libre. Les personnes suivantes ont contribué à cette extension.

Contributeurs

“Walkercorp Sentinelle – Security, Firewall, Anti-Bot & Malware Scan” a été traduit dans 3 locales. Remerciez l’équipe de traduction pour ses contributions.

Traduisez « Walkercorp Sentinelle – Security, Firewall, Anti-Bot & Malware Scan » dans votre langue.

Le développement vous intéresse ?

Parcourir le code, consulter le SVN dépôt, ou s’inscrire au journal de développement par RSS.

Journal des modifications

1.0.6

  • New: a small question-mark link next to each IP in Traffic analysis opens a details page about that address, to see where it comes from.

1.0.5

  • New: a « Visitor IP detection » setting (Firewall) makes IP detection universal: automatic by default, with manual options for sites behind Cloudflare or any other proxy or CDN.
  • Improved: visitor country detection now also reads AWS CloudFront, Google and server GeoIP data, still with no external service.

1.0.4

  • New: the visitor country is shown next to the IP address in Traffic analysis (from your server or CDN, no external service).
  • New: rows are highlighted on hover in the live connections list.

1.0.3

  • Improved: the « Block » button in Traffic analysis has a lighter, more compact design and its icon is always correctly sized.

1.0.2

  • Improved: the « Block » button in Traffic analysis has a clearer design and now keeps its « Blocked » state when the live list refreshes.

1.0.1

  • New: a « Block » button in Traffic analysis lets you block a visitor IP address in one click, for a defined time.
  • Improved: client IP detection is hardened behind reverse proxies and Cloudflare, so rate limiting and bans cannot be bypassed with spoofed headers.

1.0.0

  • First public release.