Security · 100% local

Knock the wrong way, stay outside

OWASP firewall, 2FA, anti-webshell scanner and guided cleanup from the Sentinel panel. Everything processed on your server: traffic never ends up in someone else’s cloud.

100% localmini-WAFTOTP 2FAv1.2.0 · GPL
Remove the seals ↓ Plugin Check 0/0
sentinel· boot sequence

      
SQLi XSS path traversal LFI/RCE brute force fake crawlers webshell breached passwords bot SQLi XSS path traversal LFI/RCE brute force fake crawlers webshell breached passwords bot
While you were reading this page
0 attempts

blocked on an average WordPress exposed to the internet. You don’t need to be famous to be a target: being online is enough.

The Sentinel panel

Four lines of defense, declassified

Scroll: the seals come off as you go. Eight operational tabs, these are the four that make the difference.

▮▮▮▮ classified ▮▮▮▮
01 · Prevention

Firewall · mini-WAF

OWASP rules by family (SQLi, XSS, traversal, LFI/RCE), IP reputation, rate limiting, IPv4/IPv6 geo-blocking.

▮▮▮▮ classified ▮▮▮▮
02 · Identity

Access & 2FA

Anti brute-force, TOTP con codici di recupero, breached passwords (HIBP, k-anonymity), CAPTCHA, anti fake crawlers con verifica FCrDNS.

▮▮▮▮ classified ▮▮▮▮
03 · Detection

Scanner

Core, plugin and theme integrity via checksums; deep anti-webshell scanning; CVE feed and updated malware signatures.

▮▮▮▮ classified ▮▮▮▮
04 · Reaction

Recovery

Guided cleanup after an attack, reversible quarantine, salt regeneration, incident report ready to hand over.

0/0
Transparency

WP Plugin Check: zero errors, zero warnings

GPL code you can read line by line. The opposite of cloud-security tools that ship your traffic to their datacenters: here analysis, signatures and logs stay at your place. GDPR made simple.

Coming soon

Demo or free/full version coming soon: follow OLOtheme on LinkedIn or Claudio Vinco to stay updated.

Technical deep dive Base manual + data sheet
Next stop OLOtour
OLOtheme by clod.eu | @2026 | introductory site | info@olotheme.com