Logo Wyomind Magento workshop

Add-ons for Magento®

Watchlog

logo Watchlog

Prevent your website from brute force attacks which aim is to force the access to your Magento backoffice. Watchlog helps you to identify and definitively stop such attacks!

7 Reviews

Watchlog
is available for Magento® 2

Prevent your Magento® 2 website from brute force attacks with Watchlog

Follow the traffic on your Magento® 2 admin

  • Check the daily and monthly login attempts in graphs
  • Get a detailed and a summarized table of the login attempts
  • Schedule a periodic report on the statistics by email

Keep track of each connection attempt

  • Define a history lifetime in days

Possible large scale brute force attack on Magento®!

Thousands of Magento® websites are certainely concerned by this very large brute force attack which aim is clearly to force the access to Magento® backoffices.

The principle of that kind of attack is simple: robots try to log into your backoffice using multiple login/password combinations until they find the correct credentials.

Once these credentials are identified, your Magento® website becomes an easy prey for hacking: exploitation of your database, diversion of your payments, hacking, unfair competition...

How to check if my website is subject to these attacks?

You can install our free Watchlog extension for Magento® 2 to detect the intrusions into your Magento® 2 backoffice in order to track any login attempt.

What to do?

You can easily bypass these kinds of attacks!

Several solutions exist to make your Magento® 2 backoffice invisible to robots that try to login:

- Modify the name of your Magento® 2 backoffice
- Activate captcha for your Magento® 2 backoffice
- Restrict the access to your Magento® 2 backoffice by IP with htaccess
- OR use Watchlog PRO that will act as a firewall and so replace all the above steps.

The admin of Magento® 2 can be concerned with these brute force attacks so you need to make sure to protect each entrance to your Magento® 2 backoffice.

While the free extension Watchlog lists the IPs that try to access your Magento® 2 backoffice, Watchlog PRO will also help you to stop these intrusion attempts.

Watchlog PRO is a more complete version that offers more options than Watchlog.

logo watchlog

Watchlog

Watchlog Pro

Connection attempts charts

Check the daily and monthly login attempts charts.

   

Connection attempts tables

Get detailed and summarized tables of the login attempts data.

   

Connection attempts history

Define the history lifetime and receive periodical reports.

   

Blacklist and Whitelist

Create a whitelist and a blacklist of IPs, allow access to whitelisted IPs only.

   

Automatically or Manually block IPs

Block IPs after X login attempts, block the blacklisted IPs for X minutes.

 

 

HOW TO USE THE WATCHLOG EXTENSION FOR MAGENTO 2

Watchlog is a free and easy to use extension for Magento® 2. You'll be able to see very quickly if your Magento® 2 backoffice is threatened by a brute force attack and if someone or some robots are trying to log into your Magento® 2 admin panel.

HOW TO INSTALL WATCHLOG

To install the Watchlog free extension on your Magento® 2 admin, follow the below steps:

1. Before installing the extension, it's advisable to backup your Magento® 2 installation.
2. Then, you need to refresh caches in System > Tools > Cache Management.
3. Now you can download the zipped extension from your Wyomind account > My downloads.
4. Once you have downloaded it, unzip the folder content.
5. Copy the app folder and paste it into the Magento® 2 root directory. You can merge the directories.
6. Open a console and run the following command on the Magento® 2 root directory:

bin/magento setup:upgrade

Once your installation is complete, don't forget to clear the cache and log in again.

STEP 1: Configure your Watchlog extension

You can start with configuring your extension in a general way in Stores > System > Config > Wyomind > WatchLog.

In the Connection attempts history tab, you'll be able to configure a certain number of parameters.

History lifetime in days : You have the possibility to define a history lifetime in days in order to purge the history. For example, you'll be able to define the history lifetime on 30 days in order to remove automatically all the login attempts that are older than 30 days.  

Send a periodical report : You can choose to receive periodical reports. If you have decided to set that option to YES , then you'll have to define:

- Period to report in days: define how many days you want to include in your report.
- Sender email: define the email address of the sender.
- Sender name: add the name of the sender.
- Send the reports to: add the email addresses of the recipients separated by a comma.
- Report title: define a title for the report.
- Report schedule: define a schedule to automatically send the reports.

You'll then receive a report as below.

STEP 2: Check the login attempts to your Magento® 2 backoffice

If you go to Stores > Watchlog > Connection attempts, you'll have a global overview of the login attempts executed from your Magento® 2 admin panel log in page.

Statistics on the login attempts will be displayed in graphs and tables.

Login attempts charts

You should get two graphs that recap the login attempts statistics on two different periods of time in order to give you the best possible view. The first chart will display the data on the last 30 days whereas the second one will sum up the login attempts on the last 24 hours.

On both graphs, you'll have several curves:

- Success : represents the login attempts that succeeded
- Failed: represents the login attempts that failed

Login attempts grids

You should find the summary of the last days within two different views:

- Detailed view
- Summarized view

In the Detailed View, you'll find a detailed table of the login attempts. Among that grid, you'll have several data:

- IP: the IP that tried to log into your Magento® 2 backoffice.
- Date: the date when the IP tried to log in.
- Login: the login used.
- Password: the password used to log in.
- Message: the message displayed when trying to log in.
- Url: the url from which the IP tried to log in.
- Status: the status of the IP: Success or Failed.

By clicking on Switch to the summarized view you should get a table with the basic information. You'll find:

- IP: the IPs that tried to log in
- Last Attempts: the date of the last attempt
- Attempts: the number of login attempts
- Failed: the number of failed login attempts
- Succeeded: the number of login attempts that succeeded

By default, both tables display data of the last 30 days. You can edit that from Stores > System > Config > Wyomind > WatchLog, in the History lifetime in days field.

At any time you can switch between both views.