Guardian Scan – Security Toolkit for CS-Cart & Multi-Vendor

- Guardian Scan is a security toolkit for CS‑Cart and Multi‑Vendor that performs on‑demand store and server audits, highlights risky configurations, and includes utilities for bot protection.

- Adds an Administration dashboard with two one‑click scans and a recent activity log, helping merchants quickly spot and address common misconfigurations.
Key Features

- Store Audit
  - Detects unsafe settings like showing PHP errors in production, default admin entry points, and sensitive files present in the web root.
  - Runs on demand from the admin dashboard and lists actionable issues with severity.
- Server Audit
  - Checks PHP version and common php.ini flags (display_errors), plus legacy options like safe_mode.
  - Surfaces findings in a structured report for quick remediation.
- Bot Protection Utilities
  - Identifies known malicious user agents (e.g., sqlmap, acunetix, nikto) and provides a blocking mechanism with 403 responses and localized messages.
  - Stores blocked IPs for visibility and audit.
- Logging and Visibility
  - Optional logging of each scan: records scan type, severity level, message, and timestamp to an addon‑specific table.
  - Shows “Recent Logs” in the dashboard to review past actions and outcomes.
- Localization
  - Ships with full English and Arabic language packs for UI labels, issue messages, and notifications.
How It Works

- Admin Dashboard
  - Navigation: Administration → Guardian Scan
  - Actions:
    - Run Store Scan: audits CS‑Cart configuration and the storefront environment.
    - Run Server Scan: checks PHP/runtime environment for risky flags and outdated versions.
  - Output:
    - Issue List: severity + description for each finding
    - Recent Logs: compact table with scan type, level, message, and date
- Bot Protection
  - Utility functions detect and block bad bots by user agent and log the IP and reason.
  - Blocking uses an HTTP 403 response with a friendly localized message.
  - Enable via addon settings; integration can be extended via hooks if desired.
Benefits

- Fast, actionable security checks without leaving the CS‑Cart admin area.
- Clear findings with severity to prioritize what to fix first.
- Optional logs for compliance, auditability, and team visibility.
- Lightweight and safe: reads configuration and environment details; does not process or store personal customer data.
Setup

- Installation: install and activate “Guardian Scan” from Add‑ons.
- Settings: toggle “Log security scans” and “Enable bot protection” as needed.
- Usage:
  - Open Administration → Guardian Scan
  - Click “Run Store Scan” and/or “Run Server Scan”
  - Review the issues list and “Recent Logs” for next steps
Compatibility

- CS‑Cart Core: 4.19.1 – 4.19.9
- Editions: Ultimate, Multi‑Vendor
- Languages: English, Arabic
Data Storage

- Logs: saved to a dedicated addon table for scan results
- Blocked IPs: stored with reason and timestamp
- Uninstall cleans up all addon tables
Technical Notes

- Admin Controller and Modes: run store/server scans, render results, and log events guardian_scan.php
- Core Functions: store/server checks, logging, bad bot detection and blocking func.php
- Admin UI: dashboard, scan forms, issues component, and logs table manage.tpl , issues_list.tpl
- Settings and DB Schema: addon options and tables for logs and blocked IPs addon.xml
- Languages: English/Arabic packs included guardian_scan.po (en) , guardian_scan.po (ar)