Guardian Gaze

Description

Safeguard your WordPress website from evolving malware, brute force attacks, and zero-day vulnerabilities.

GUARDIAN GAZA BY REDSECLABS

Effective WordPress security requires more than static rules and generic alerts. It requires continuous analysis of emerging threats, reliable detection logic, and clear visibility into what is happening on your website.
Guardian Gaze is a professional WordPress security plugin developed by RedSecLabs, a cybersecurity firm focused on threat research, detection engineering, and defensive security tooling. The plugin is designed to help website owners, agencies, and developers monitor and strengthen WordPress websites against real-world security risks.
Guardian Gaze provides real-time WordPress security monitoring across critical areas such as malware detection, login security, IP management, and core hardening. Detection logic is supported by continuously updated threat intelligence, allowing the plugin to adapt as new WordPress threats and attack techniques emerge.

BUILT ON SECURITY RESEARCH, NOT STATIC RULES
Modern WordPress threats evolve quickly. Malware variants change, attack patterns shift, and exploitation techniques are refined continuously.
Guardian Gaze is built around an intelligence-informed approach to WordPress security. Detection patterns and security logic are updated regularly through the Guardian Gaze Security Intelligence API operated by RedSecLabs. This allows protection to remain relevant without relying solely on outdated signatures or aggressive blocking.
The focus is on visibility, detection, and informed response, rather than excessive alerts or disruptive controls.

CORE SECURITY FEATURES

WordPress Malware Detection & Scanning
Guardian Gaze includes a built-in WordPress malware scanner that checks WordPress core files, plugins, and themes for indicators of compromise.
– Detects suspicious code patterns and unauthorised file changes
– Helps identify malware injections, backdoors, and malicious modifications
– Designed for ongoing WordPress malware detection rather than one-time scans
– Supports informed investigation without automatic or destructive actions
The scanner provides context and clarity, allowing site owners or developers to decide on remediation steps.

Login Security & Brute Force Protection
Guardian Gaze strengthens WordPress login security by monitoring authentication activity and applying protective controls where needed.
– Limits repeated failed login attempts
– Reduces exposure to brute force and credential abuse
– Highlights unusual or suspicious login behaviour
These controls are designed to protect authentication endpoints without disrupting legitimate users.

IP Management & Traffic Control
Guardian Gaze provides flexible WordPress IP management tools to help reduce malicious and abusive traffic.
– Block or allow specific IP addresses manually
– Automatically flag IPs associated with suspicious behaviour
– Reduce noise caused by repeated probing and automated abuse
IP controls are intended for targeted, informed responses rather than broad or permanent bans.

WordPress Security Hardening
The plugin includes guidance and controls for common WordPress security hardening practices.
– Helps improve default WordPress configurations
– Reduces exposure from known weak points
– Aligns with WordPress best practices
Each hardening option is explained clearly so users understand its impact before applying changes.

Central Security Dashboard
Guardian Gaze provides a centralised dashboard offering a clear overview of your site’s security posture.
– Recent malware scans and findings
– Login activity and security events
– Blocked and flagged IP addresses
– Alerts and system status indicators
The dashboard is designed to be accessible to non-technical users while remaining useful for developers and agencies.

Configuration, Alerts & Monitoring
Guardian Gaze includes configurable alerts and settings to support continuous WordPress security monitoring.
– Email notifications for scan results and login-related events
– Adjustable alert sensitivity to reduce unnecessary noise
– Settings suitable for individual site owners and agencies managing multiple sites
This allows users to stay informed without constant manual checks.

CONTINUOUS THREAT INTELLIGENCE UPDATES
Guardian Gaze integrates with the Guardian Gaze Security Intelligence API operated by RedSecLabs. This service delivers updated detection patterns and threat indicators to improve detection accuracy over time.
Updates are designed to balance effectiveness, performance, and stability across a wide range of hosting environments.

TRANSPARENT USE OF EXTERNAL SERVICES
Guardian Gaze uses external services only where required to support security functionality such as threat intelligence updates, license management, and optional reporting.
– No unnecessary data collection
– No transmission of passwords or sensitive site content
– All communications use WordPress native APIs and secure connections
– Optional features can be disabled based on user preference
This approach aligns with WordPress.org guidelines and prioritises transparency and user trust.

PRIVACY-FIRST SECURITY DESIGN
Guardian Gaze is built with privacy and data ownership in mind.
– No sale or sharing of user data
– Minimal data processing limited to security metadata
– Clear separation between website content and security information
The plugin is designed to protect WordPress websites while respecting user control and privacy expectations.

DEVELOPED BY REDSECLABS

RedSecLabs is a professional cybersecurity firm specialising in threat research, detection engineering, and defensive security solutions. The company focuses on practical, real-world security challenges rather than marketing-driven feature sets.
Guardian Gaze reflects this philosophy by offering a technically sound, transparent, and reliable WordPress security plugin developed for long-term use.

EXTERNAL SERVICES

This plugin connects to several external services to provide security features and functionality. Below is a detailed explanation of each service, what data is sent, when, and why:

1. Guardian Gaze API (wp-api.guardiangaze.com)

Purpose: This is our proprietary API service used for license management, malware pattern updates, and email report delivery.

What data is sent:
– Admin email address
– Site URL
– API/License key
– Plugin version
– Malware definitions version
– IP address (for blocking malicious IPs)
– Scan report data (when scheduled email reports are enabled)

When data is sent:
– During plugin activation and license registration
– When checking for malware pattern updates
– When sending scheduled scan email reports
– When blocking malicious IPs globally

Service provider: Guardian Gaze by RedSec Labs
– Terms of Service: https://wp.guardiangaze.com/terms-of-service/
– Privacy Policy: https://wp.guardiangaze.com/privacy-policy/

2. Guardian Gaze API (wp.guardiangaze.com)

Purpose: Used to send website url for registration in url querystring.

What data is sent:
– Site URL

When data is sent:
– When user register the plugin for the first time

Service provider: Guardian Gaze by RedSec Labs
– Terms of Service: https://wp.guardiangaze.com/terms-of-service/
– Privacy Policy: https://wp.guardiangaze.com/privacy-policy/

3. WordPress.org API (api.wordpress.org)

Purpose: Used to check for the latest WordPress core version and verify WordPress core file integrity.

What data is sent:
– WordPress version number
– Locale/language setting

When data is sent:
– When checking if WordPress is up to date (in Hardening section)
– When verifying WordPress core file checksums during malware scans
– When checking WordPress.org communication status

Service provider: WordPress.org / Automattic
– Terms of Service: https://wordpress.org/about/privacy/
– Privacy Policy: https://wordpress.org/about/privacy/

4. IP-API.com Geolocation Service (ip-api.com)

Purpose: Used to determine the country location of IP addresses for country-based blocking and geographic analytics.

What data is sent:
– IP addresses (visitor IPs and blocked IPs)

When data is sent:
– When displaying geographic data on the dashboard
– When determining country for IP-based blocking rules
– Results are cached for 24 hours to minimize API calls

Service provider: IP-API.com
– Terms of Service: https://ip-api.com/docs/legal
– Privacy Policy: https://ip-api.com/docs/legal
– Note: This plugin uses the free tier which has usage limits

5. IPAPI.co Geolocation Service (ipapi.co)

Purpose: Alternative geolocation service used for determining visitor country information on the dashboard.

What data is sent:
– Visitor IP addresses

When data is sent:
– When loading the dashboard to display visitor geographic information

Service provider: IPAPI.co
– Terms of Service: https://ipapi.co/terms/
– Privacy Policy: https://ipapi.co/privacy/

Important Notes:
– All external API communications use WordPress’s built-in wp_remote_get() and wp_remote_post() functions
– Data transmission occurs over HTTPS (except ip-api.com which uses HTTP)
– No sensitive user data (passwords, personal information) is ever transmitted
– You can disable certain features if you prefer not to use specific external services
– Geolocation data is cached to minimize external API calls