README

FilamentWatchdog v5

Advanced security monitoring and intrusion detection plugin for FilamentPHP v5

Requirements

• PHP 8.2+
• Laravel 11+, 12+ or 13+
• FilamentPHP 5.x

Features

• File Integrity Monitoring — SHA-256 hash baseline with automatic change detection
• Malware Detection — Pattern-based scanning with 40+ signatures, auto-updated from GitHub
• Security Alerts — Severity-based alerting with professional HTML email notifications
• Activity Logging — Track logins, admin actions and high-risk events
• Emergency Lockdown — One-click maintenance mode with admin bypass
• Quarantine System — Isolate suspicious files automatically
• Dynamic Signature Updates — Fetch the latest malware signatures via dashboard button or scheduler
• Artisan Commands — Manual scans, baseline creation, signature updates, cleanup and debug tools
• Laravel Scheduler — Automated scans every minute, signature updates weekly via cron

Installation

composer require mkwebdesign/filament-watchdog-v5

Publish the config:

php artisan vendor:publish --tag=filament-watchdog-config

Run the migrations:

php artisan migrate

Panel Registration

Add the plugin to your AdminPanelProvider:

use MKWebDesign\FilamentWatchdog\FilamentWatchdogPlugin;

->plugin(FilamentWatchdogPlugin::make())

Initial Setup

After installation, create a security baseline and fetch the latest malware signatures:

php artisan watchdog:baseline
php artisan watchdog:update-signatures

The baseline snapshot is required before the scanner can detect file changes. Without it, every file will be flagged as new on the first scan.

Cron Setup

Add the standard Laravel scheduler to your crontab:

* * * * * cd /path/to/project && php artisan schedule:run >> /dev/null 2>&1

The scheduler will run file scans every minute, clean up old logs daily and update malware signatures weekly.

Environment Variables

Add these to your .env file to configure email alerts:

WATCHDOG_EMAIL_ENABLED=true
WATCHDOG_EMAIL_RECIPIENTS=security@yourdomain.com
WATCHDOG_MIN_SEVERITY=high

Optionally override the signatures source URL:

WATCHDOG_SIGNATURES_URL=https://raw.githubusercontent.com/MKWebDesign/filament-watchdog-v5/main/signatures.json

Artisan Commands

# Create a security baseline (required after installation)
php artisan watchdog:baseline

# Run a full security scan
php artisan watchdog:scan

# Update malware signatures from remote database
php artisan watchdog:update-signatures

# Show debug info and statistics
php artisan watchdog:debug

# Clean up old logs
php artisan watchdog:cleanup --days=30

# Emergency lockdown
php artisan watchdog:emergency-lockdown activate
php artisan watchdog:emergency-lockdown deactivate

Configuration

After publishing, edit config/filament-watchdog.php to configure monitored paths, excluded paths, malware signatures, email recipients and more.

Author

Martin Knops | MKWebDesign

• Website: mkwebdesign.nl
• GitHub: @mkwebdesign

License

MIT — see LICENSE.md

Made with ❤️ by MKWebDesign