🎉 Use coupon MYXERO to enjoy 20% recurring discount on any plan. View Pricing
XeroWP
Activity Guard – Complete Security, Activity Log & WooCommerce Analytics Tracker
Activity Guard – Complete Security, Activity Log & WooCommerce Analytics Tracker

Activity Guard – Complete Security, Activity Log & WooCommerce Analytics Tracker

5/5 (4 ratings) 70 active installs Updated May 1, 2026
Activity Logaudit logsecurityuser trackingwoocommerce
Download v3.11.2 Plugin Website
Security Dashboard - real-time overview of all security events, blocked IPs, and threat activity on your WordPress site.

Security Dashboard - real-time overview of all security events, blocked IPs, and threat activity on your WordPress site.

Activity Guard is the only free WordPress plugin that combines a complete activity log, built-in security firewall with scanner, deep WooCommerce analytics, and multi-channel real-time alerts (Slack, Telegram, Email) in a single dashboard – so you can monitor, protect, and recover from threats without juggling multiple plugins.

Most activity log plugins only log events. Most security plugins only block threats. Activity Guard does both – and adds WooCommerce abandoned-cart analytics and a plugin vulnerability scanner that no dedicated activity log competitor includes for free.

Whether you run a WooCommerce store, a multi-author blog, or a client agency, Activity Guard gives you the full picture: who did what, when, from where – and what to do about it.

Activity Guard Website | Documentation | Pro Support

Join us:
* Facebook Community
* YouTube Tutorials
* X / Twitter

Why Activity Guard Is Different

Other activity log plugins make you buy a premium plan to get Slack alerts, security features, or WooCommerce tracking. Activity Guard ships all of that – including Telegram notifications, IP firewall with emergency shutdown, plugin vulnerability scanning, and WooCommerce incomplete-order tracker with analytics.

Activity Guard combines all four of these capabilities at once:

  • Full WordPress activity log with visual charts
  • Advanced security firewall with IP blocking and emergency session shutdown
  • WooCommerce analytics including abandoned cart recovery tracking
  • Real-time multi-channel alerts via Slack, Telegram, and Email

Complete WordPress Activity Log

Activity Guard logs every meaningful change on your site with IP address, username, timestamp, and change detail – so you always know who changed what, when, and from where.

  • User logins, logouts, and failed login attempts
  • User registration, role changes, and profile edits
  • Page, post, custom post type – create, edit, delete, status changes
  • Plugin and theme activations, deactivations, updates, and deletions
  • WordPress core settings and configuration changes
  • Menu, widget, and sidebar modifications
  • Email delivery tracking (email log)
  • Form submission tracking (Contact Form 7, SimpleForm, and more)
  • Admin settings changes and debug log events
  • Cron job scheduling and background process tracking
  • Script modification and file change detection
  • Visitor traffic monitoring with disable toggle

Visual charts and graphs provide at-a-glance summaries of your audit log – no need to scroll through raw log tables to understand site trends.

Advanced WordPress Security & Firewall

Activity Guard is a proactive security plugin, not just a passive logger. It actively blocks threats and alerts you before damage occurs.

  • IP blocking: manual, CIDR range, and conditional rule-based
  • Emergency shutdown: instantly force-logout all active sessions
  • Cloudflare Turnstile login protection against bots and brute force
  • Login rate limiting to stop credential-stuffing attacks
  • Bot detection and automatic IP blocking
  • Restrict or fully disable XML-RPC access
  • Core file integrity scanner – detect unauthorized file changes
  • File integrity monitoring across plugins and themes
  • Block TOR network access
  • Block vulnerability scanner user agents
  • HTTP security headers (custom, logged, and enforced)
  • WordPress version hiding from public exposure
  • 404 error tracking and suspicious HTTP request alerts
  • Admin dashboard visitor tracking
  • Cron job failure and site downtime monitoring

Emergency Shutdown is a feature unique to Activity Guard: with one click, you can force-logout every logged-in session on your site – ideal when you detect a breach in progress.

Plugin Vulnerability Scanner

Activity Guard scans every installed plugin and theme for known security vulnerabilities before they become a problem – no separate security scanner needed.

  • Detect plugins with known CVEs against multiple vulnerability databases
  • Flag outdated plugins not compatible with your WordPress version
  • Identify abandoned plugins (not updated in over a year)
  • Warn about plugins with low install counts or poor ratings
  • Cross-reference NVD (National Vulnerability Database), WPVulnerability.net, and the WPAzleen private API

No other free activity log plugin includes a built-in multi-database vulnerability scanner.

WooCommerce Activity Log & Analytics

Activity Guard tracks every event in your WooCommerce store – and goes further with analytics designed specifically for store owners.

  • Log all order status changes, payments, refunds, and cancellations
  • Stock level changes and low-stock events
  • Coupon creation, editing, and usage notifications
  • Product edits, pricing changes, and metadata updates
  • Billing and shipping address modifications
  • Customer registration and account changes
  • Shipping status updates in real time
  • Incomplete Orders / Abandoned Cart Analytics: track checkout drop-offs, recovery potential, recovery rate, and customer cart interactions to understand where revenue is being lost

WooCommerce incomplete-order analytics (abandoned cart tracking with recovery rate metrics) is included free – no other activity log plugin in the WordPress.org directory provides this at no cost.

Multi-Channel Real-Time Alert System

Receive instant alerts the moment a critical event occurs – across four notification channels:

  • Slack: send alerts to any Slack channel or tag specific users and groups using Slack user/group @mentions
  • Telegram: receive real-time security and activity alerts in your Telegram chat
  • Email: configurable email alerts for any event type
  • Admin Dashboard: in-dashboard notification panel

Notification types include:
* Core file change alerts
* Plugin and theme update alerts (with updater username)
* WooCommerce order, payment, and coupon alerts
* Incomplete order follow-up reminders (recover lost sales)
* Product edit, stock change, and shipping update alerts
* Login, registration, and role change alerts
* Page, post, and taxonomy create/update/delete alerts
* Form submission and admin settings change alerts
* Daily review digests and weekly plugin download summaries

You can schedule notifications for specific times and configure exactly which events trigger alerts – giving you full control without alert fatigue.

Admin & Developer Tools

  • Maintenance mode toggle directly from the dashboard
  • Menu and widget change tracking
  • Plugin and theme activation/deactivation logs
  • Script modification detection
  • HTTP security header change logging
  • Debug log and fatal error detection
  • Email log: full delivery history for all outgoing WordPress emails
  • Form integration alerts for Contact Form 7 and SimpleForm

Perfect For

  • WooCommerce Store Owners: Track every order, coupon, product change, and shipping event – and recover revenue with abandoned-cart analytics
  • Site Administrators: Know exactly who changed what, instantly log off suspicious users, and keep a clean audit trail
  • WordPress Agencies & Developers: Monitor plugin/theme updates, configuration changes, fatal errors, and debug logs across client sites
  • Security-Focused Admins: Proactively block IPs, scan for vulnerabilities, monitor file integrity, and trigger emergency shutdowns
  • Multi-Author Sites & Teams: Hold contributors accountable with a complete user activity log and role-change tracking

Final Thoughts

Activity Guard is the Best WordPress plugin to track all changes, acting as your all-in-one activity log, notifier, user log, email log, and security plugin designed to keep your WordPress site safe, efficient, and well-monitored.

With real-time alerts, detailed logs, and robust features, you’ll never miss a thing from How to monitor user activity on a WordPress site to site vulnerabilities.

Try Activity Guard today and bring total visibility and WordPress Security to your WordPress site.

Don’t just take our word for it – try Activity Guard yourself and experience the difference!

Secure your WordPress site and stay informed with Activity Guard – your all-in-one solution for Real-time user monitoring WP and WordPress activity log plugin.

Documentation & Support

External services

Slack Webhook Integration

Activity Guard allows you to send notifications of all active actions directly to your Slack workspace using Slack webhooks. This feature enables real-time monitoring of plugin activities.

🔧 Webhook Configuration

The plugin uses the Slack incoming webhook URL you provide to send notifications to your Slack channel.

To set up an incoming webhook for your Slack workspace:

  1. Create a new app or use an existing one
  2. Activate Incoming Webhooks for your app
  3. Add a new webhook to your workspace
  4. Copy the webhook URL and paste it into the plugin settings

Cloudflare Turnstile

Activity Guard also uses Cloudflare Turnstile to enhance security and prevent spam. For more details, please refer to Cloudflare’s privacy policy.

Plugin Security Scanner

This component checks for known vulnerabilities in installed WordPress plugins by analyzing various public and private data sources. It runs a series of automated security checks and provides recommendations.

Features

  • Detects outdated plugins
  • Flags abandoned plugins (not updated in over a year)
  • Checks WordPress version compatibility
  • Warns about low install counts
  • Analyzes plugin ratings
  • Checks against multiple vulnerability databases

Data Sources

  • WordPress.org Plugin API
    Used to retrieve plugin metadata such as latest version, last updated date, rating, active installs, etc.
    📄 Privacy Policy

  • WPAzleen API (/wp-json/wpx/v1/plugin-vulnerabilities)
    Custom API endpoint to fetch known vulnerabilities for specific plugins and versions.
    📄 No sensitive data is transmitted. Private API complies with plugin author’s data policy. Privacy Policy

  • WPVulnerability.net
    Public API used to retrieve CVE-based vulnerability data for WordPress plugins.
    📄 Privacy Policy

  • National Vulnerability Database (NVD)
    Checks against known CVEs using official NVD data.
    📄 Privacy Policy

Activity Guard does not collect, store, or transmit any sensitive or personal information to performed the scan. All scans and checks are performed locally using public plugin metadata and vulnerability sources.

Freemius

Activity Guard an renamed version of Notifier to Slack utilizes the Freemius SDK to collect limited telemetry data, only upon the user’s explicit confirmation. This data helps us troubleshoot issues efficiently and improve our product for a better user experience.

🔐 Key Points:

  1. No Data Collected by Default
    The Freemius SDK does not collect any data by default. Data collection only begins when the user consents via the admin notice displayed in the plugin interface.

  2. User Confirmation Required
    Integration of the Freemius SDK does not automatically enable data collection. Data is only gathered after users confirm their consent.

  3. Purpose of Data Collection
    The collected data is used solely to enhance the user experience, resolve issues more effectively, and improve the plugin’s functionality.

For more details about Freemius and its data practices, please visit their FAQ page.

Additionally, you can review WPAzleen’s privacy policy for further information.