Skip to content
Intally

Quick start

Quick start

Security Sentinel adds a comprehensive security-audit layer to WHMCS: hardening checks, SSL monitoring, admin audit trail, module vulnerability scanning, and compliance checklists. This guide covers install, your first scan, and Pro features (scheduled scans / notifications).

For all WHMCS hosting providers — especially those with compliance requirements (PCI-DSS / GDPR / NIS2).

1. Install and activate

  1. Download the ZIP matching your PHP version and extract into your WHMCS root.
  2. WHMCS admin → Setup → Apps & Integrations → Security Sentinel → Activate.
  3. Configuration → Addon Modules → tick admin role + license key + Save.
  4. Addons → Security Sentinel opens the console.

2. 7-page admin

  • Dashboard: 8-category hardening score + recent issues
  • Hardening: run checks (PHP config, web server headers, directory permissions, crypto, ...)
  • Audit: admin action log + anomalous-login locator
  • Modules: scan installed third-party modules for known vulns
  • SSL: monitor every client domain certificate expiry + config grade (Pro)
  • Compliance: PCI-DSS / GDPR / NIS2 checklists (Pro)
  • Settings: scan frequency, notification channels, white-label

3. First scan

Hardening page → "Run scan now":

  • 8 categories run in parallel (PHP / web / WHMCS / crypto / log / backup / network / config)
  • Each returns score / max + failed-checks list
  • Dashboard aggregates the total grade

4. Remediation guidance

Each failed check includes: - Current value - Recommended value - Severity (low / medium / high / critical) - Fix-guide link

Prioritise critical / high.

5. SSL monitoring (Pro)

The SSL page:

  • Auto-scans every active client domain
  • Shows certificate days-left / issuer / crypto algorithm
  • Highlights expiry within 30 days + email reminder
  • Config grade (HSTS / protocol version / cipher suite)

6. Compliance checklists (Pro)

The Compliance page:

  • Pick target framework (PCI-DSS / GDPR / NIS2)
  • Each requirement matched against detected scan state
  • Failures listed with remediation guide

7. Scheduled scans (Pro)

Settings page:

  • Enable daily / weekly auto-scans
  • Email / Slack / Webhook alert on score regression
  • Custom sensitivity threshold

8. Auto-updates

Dashboard "Check for Updates" panel pulls the latest version.

For deeper docs (per-category check list, SSL grading algorithm, compliance-framework mapping) see the "Full documentation" link on your store dashboard card.