WordPress plugin for monitoring, logging, and alerting suspicious GET requests on your website. It acts as an additional security layer, helping you detect potential threats at an early stage.
Attackers may use specific GET requests to search for vulnerabilities in your system. The plugin automatically:
- Monitors such requests
- Logs them for review
- Alerts the administrator about potential threats
- Monitoring of suspicious activity
- Rapid detection of threats (SQL injections, XSS, LFI/RFI/RCE, CSRF attacks, etc.)
- Quick response capabilities
With this plugin, you can enhance your website's security and proactively prevent potential attacks.
IP GET Logger is a powerful WordPress plugin designed to help website administrators monitor and track specific GET requests made to their websites. The plugin allows you to define GET request patterns to watch for, log details of matched requests, and optionally receive email notifications when matches are found.
- GET Request Tracking: Define specific GET request patterns to monitor
- Logging System: Keep detailed logs of all matched requests
- Email Notifications: Receive instant notifications when matching requests are detected
- Email Throttling: Limit notification frequency to prevent inbox flooding
- Persistent Logs: Logs are stored in the
/wp-content/ip-get-logger-logs/directory and preserved during plugin updates - Device Detection: Identify and log the device type (Desktop, Mobile, Tablet, Bot)
- Geolocation: Determine and log the country from which requests originate
- Import/Export: Easily import or export your GET request patterns
- Patterns Management: Search, filter, and paginate through your patterns collection
- Update Patterns: Update patterns from the global database repository
- Clear Patterns: Easily clear all patterns with one click
- Exclude Patterns: Define URL patterns that should be ignored by the logger
- Auto-update Exclude Patterns: Update exclusion patterns from the remote repository
- User-friendly Admin Interface: Intuitive settings page for easy configuration
- Test URL: Test your URL against defined patterns
- Plugin update system: Stay updated with the latest version
Logs
Patterns
Exclude Patterns
Settings
URL Matching Test
Email Notifications
- Download the
IP GET Loggerplugin (green Code button - Download ZIP). Unpack it. - Upload the
ip-get-loggerfolder to the/wp-content/plugins/directory. Make sure the plugin folder is namedip-get-logger(the name doesn't affect how the plugin works, but it does affect receiving future updates). - Activate the plugin.
- Install and activate this plugin (plugin installer): https://github.com/pekarskyi/ip-installer
- Using the
IP Installerplugin, install and activate theIP GET Logger.
- Configure necessary parameters in the plugin settings.
- Go to the
Patternssection and click theUpdate Patternsbutton to install a list of patterns against which requests will be checked and logged. - Go to the
Exclude Patternssection and click theUpdate Exclude Patternsbutton to install a list of exclusions. The plugin will ignore requests with URLs that match these exclusion patterns.
The plugin allows you to add your own patterns and exclusions that won't be erased after updating the main database. You have the ability to add, edit, and delete patterns and exclusions.
The list of patterns and exclusions is periodically updated by the plugin author.
If you have any questions, suggestions, found bugs, or discovered new malicious requests, please report them on GitHub in the Issues section.
Add a pattern: eval=
This will track requests that might be attempting code injection.
- English
- Українська
The plugin supports the creation of localization for any language.
1.0.1 - 14.04.2025
- Added Logs Export (XLS, HTML)
- Updated localization
1.0.0 - 06.04.2025
- Initial release