SleekView for Defender Pro: audit logs & lockouts as tables
Defender Pro records every event to wp_defender_audit_log and stores lockouts in wp_defender_lockout_log. SleekView joins them into one grid you can pivot, save, and edit inline.
♾️ Lifetime License available
A grid for Defender's audit trail
Defender Pro records its activity across a handful of custom tables: wp_defender_audit_log for the full event stream with actor, event type, and context, wp_defender_lockout_log for blocked IPs and the reason for each block, and wp_defender_scan plus wp_defender_scan_item for the malware scanner. The plugin's UI presents each in its own screen, which is fine for browsing but limiting when an investigation spans tables.
SleekView treats those tables as a single source. It reads wp_defender_audit_log and joins wp_defender_lockout_log on IP and user, so the event row that triggered a block shows alongside the lockout it produced. Scan items from wp_defender_scan_item can sit in their own view or overlay onto the audit grid when a forensic timeline matters.
Inline writes route through Defender's own functions where they exist (for example unlocking an IP or resolving a scan item) and fall back to direct table writes with conflict detection where they do not. The result is a working incident grid rather than a stack of read-only logs.
Workflow
From Defender Pro logs to a working grid
Connect to the audit log
wp_defender_audit_log. Actor, event type, IP, and timestamp are detected and offered as the starting field set.
Promote context keys
context that matter for your modules and surface them as columns. Module names, settings keys, and target objects become real filters.
Join lockouts and users
wp_defender_lockout_log and wp_users so each event row shows its current block state and the actor's display name and role.
Save views and act inline
Sample columns
A typical Defender Pro audit view
wp_defender_audit_log.
wp_defender_audit_log, wp_defender_lockout_log, wp_defender_scan_item
| When | Actor | Event | IP | Context | Outcome |
|---|---|---|---|---|---|
| Today 07:42 | alex@studio.co | login_success | 203.0.113.10 | wp-login | Allowed |
| Today 08:05 | (anonymous) | login_failed | 198.51.100.4 | wp-login | Throttled |
| Today 08:31 | (anonymous) | ip_lockout | 198.51.100.4 | lockout_module | Blocked |
| Today 09:12 | ria@design.io | settings_changed | 203.0.113.18 | two-factor | Saved |
Comparison
Default Defender Pro admin vs SleekView
Default Defender Pro admin
- Audit log, lockouts, and scan items each live on their own screen, with no shared filter or view across them.
-
The audit list filters by event type and date, but does not expose the JSON context column from
wp_defender_audit_logas columns. -
Cross-referencing a row in
wp_defender_lockout_logwith the event that caused it means opening two tabs. - Bulk operations on lockouts (unlock or whitelist a range) require either CLI or repeated row actions.
- Exports are limited to PDF reports or per-screen CSV with a fixed column set.
SleekView
-
Joins
wp_defender_audit_logwithwp_defender_lockout_logso an event and its block sit on the same row. -
Promotes keys from the audit log's
contextJSON to typed columns for filtering and sorting. - Saves named views for failed logins, two-factor changes, or settings edits per role.
- Inline unlock of an IP or resolve of a scan item, routed through Defender's own functions where supported.
-
Exports the visible columns as
CSVorJSONwith the active filter applied.
Features
What SleekView gives you for Defender Pro
Audit and lockouts joined
Reads wp_defender_audit_log and joins wp_defender_lockout_log on IP. The event that caused a lockout shows next to the lockout itself rather than across two screens.
JSON context as columns
Promotes keys from the audit log's context JSON to columns. Module name, settings key, and target object become filterable fields rather than buried text.
Inline incident response
Unlock an IP, resolve a scan item, or annotate an audit event from the row. Writes go through Defender's CRUD where available and fall back to direct table writes.
Audience
Who uses SleekView for Defender Pro
Security teams
Cross-filter audit events and lockouts to spot patterns. Pivot on IP, actor, or event type to triage incidents that span two-factor, brute force, and settings modules.
Customer support
Resolve locked-out users by jumping from wp_defender_lockout_log to the event that caused the block. Unlock or whitelist from the row with the reason annotated for the next agent.
Compliance owners
Export filtered audit rows for monthly access reviews or incident retrospectives. Saved views replace ad-hoc CSVs that drift between reviewers.
The bigger picture
Why a single audit grid matters
Defender Pro covers a wide spread of hardening, from two-factor enrolment to brute force, scans, and security headers. That breadth is also why its admin screens feel scattered when something goes wrong. A real incident usually crosses Defender's internal modules: a settings change happens just before a brute force run, a lockout drops on the same IP that hit a missing file warning, an admin login from a new country lines up with a scan item turning red.
Reading those signals from separate screens means a slow triage and lost context. Treating wp_defender_audit_log, wp_defender_lockout_log, and wp_defender_scan_item as joined sources turns that triage into one grid where the question and the action sit next to each other. Saved views make repeat investigations cheaper because the next on-call admin reopens the same filter and column set rather than rebuilding it.
Inline writes mean the action happens where the data lives, with the annotation stored against the row for the next reviewer. Defender already captures the trail faithfully; a working grid is what makes that trail useful at speed.
Questions
Common questions about SleekView for Defender Pro
No. The Defender hub keeps doing what it does. SleekView adds a real grid layer on top of wp_defender_audit_log and the lockout and scan tables so investigations are easier than scrolling lists.
Any key inside the audit log's context column can be promoted to a column. Once promoted it behaves like any native field for filtering, sorting, and exports.
Yes. Unlock calls go through Defender's own functions where available. For columns without a public API, SleekView writes to wp_defender_lockout_log with conflict detection.
Yes. SleekView reads local tables, which stays compatible with Hub sync. Defender continues syncing whatever it was syncing before.
wp_defender_scan_item can have its own SleekView grid. Resolved, ignored, and active items become filters, with bulk actions for resolve or ignore from the row.
Yes. SleekView paginates server-side using Defender's existing indexes on timestamp, event type, and IP. Even installs with months of audit history stay responsive.
Capability checks follow WordPress roles and any Defender capability filters. You can also gate specific saved views to a smaller group when the data is sensitive.
Yes. Exports respect the active filter and visible columns. CSV is the default; JSON is available for SIEMs or downstream automation.
Pricing
More than 1000+
happy customers
Explore our flexible licensing options tailored to your needs. Upgrade your license anytime to access more features, or opt for a lifetime license for ongoing value, including lifetime updates and lifetime support. Our hassle-free upgrade process ensures that our platform can grow with you, starting from whichever plan you choose.
Lifetime ♾️
Most popular
EUR
once
- Unlimited websites
- Lifetime updates
- Lifetime support
...or get the Bundle Deal
and save €250 🎁
The Bundle (unlimited sites)
Pay once, own it forever
Elevate your WordPress site with our exclusive plugin bundle that includes all of our premium plugins in one package. Enjoy lifetime updates and lifetime support. Save significantly compared to buying plugins individually.
What’s included
-
SleekAI
-
SleekByte
-
SleekMotion
-
SleekPixel
-
SleekRank
-
SleekView
€749
Continue to checkoutBrowse more
- Woocommerce Back In Stock
- Gumroad Wp
- Yith Woocommerce Sales Countdown
- Woocommerce Weight Based Shipping
- Sliced Invoices
- Surecart Subscriptions
- Woocommerce Clearpay
- Woocommerce Shop As Customer
- Bigcommerce
- Woocommerce Trade Pricing
- Wc Marketplace
- Woocommerce Product Question
- Woocommerce Checkout Fees
- Woocommerce Distance Rate Shipping
- Woocommerce Packlink Pro