Security Audit Pro – Penetration Testing & Vulnerability Scanner

PRESENTATION

Security Audit Pro is an advanced PrestaShop module designed to perform a complete security audit of your store using more than 60 automated penetration tests. It deeply analyzes your environment to detect critical vulnerabilities, evaluates your protection level with an A-to-F score, and generates a detailed report ready to be used by an AI assistant to automatically fix issues.

With the rise of AI-powered attacks, e-commerce stores have become easy targets. This module allows you to take back control by running the same checks as a professional security auditor, directly from your back office, in just a few minutes.

Key benefits:

Complete audit with 60+ security tests
Global A-to-F security score
Smart export for AI-based automatic fixing
No technical skills required
100% non-intrusive

FEATURES

Complete security analysis

The module automatically runs 8 scanners covering the entire attack surface of your PrestaShop store. Each scan is executed in real time with a progress indicator, allowing precise identification of vulnerabilities.

Intelligent scoring system

Each store receives a security grade based on a weighted formula that considers the severity of detected issues. This allows you to track your security evolution over time and quickly identify priority fixes.

AI export feature

Once the scan is completed, you can export a structured file containing all detected vulnerabilities and their fixes. This file can be used with ChatGPT, Claude, or any AI assistant to automatically resolve issues.

Additional features

HTTP headers scan: checks security headers (HSTS, CSP, etc.)
SSL/TLS analysis: certificate validity and configuration
Sensitive files scan: detects exposed critical files (.env, .git, etc.)
Back-office audit: admin access security and brute-force protection
Module analysis: detects known CVE vulnerabilities
WebService API scan: checks unsecured endpoints
SQL injection detection: analyzes sensitive parameters
XSS / CSRF protection: validates front and back protections
Access control checks: detects IDOR and permission issues

INSTALLATION

Download the module from your customer account
In the PrestaShop back office, go to Modules > Module Manager
Click on Upload a module and select the ZIP file
Configure the module according to your needs

CONFIGURATION

General settings

The module allows you to launch a full scan in one click from the back office. You can track progress in real time and view results organized by category.

Advanced settings

Advanced options allow deeper analysis of modules, system files, and API endpoints. You can also access scan history and compare results over time.

REQUIREMENTS

PHP 8.1 or higher
PHP extensions: cURL, JSON, OpenSSL
SSL (HTTPS) connection recommended

FAQ

Is the module compatible with my theme?

Yes, the module is fully independent from the front office and compatible with all standard PrestaShop themes.

Does the module modify my website?

No, all tests are read-only. No files are created, modified, or deleted.

Do I need technical skills?

No, each issue is explained with clear step-by-step instructions.

Can vulnerabilities be fixed automatically?

Yes, thanks to the AI export, you can use tools like ChatGPT to automatically fix issues.

How long does a scan take?

A full scan usually takes less than 5 minutes.

Does the module slow down my site?

No, it does not add any scripts or load to the front office.

Does it support multistore?

Yes, each store has independent scans and configurations.

Is my data secure?

Yes, no data is sent to external services.

Can I track security improvements?

Yes, a scan history is available with score comparisons.

Does it detect vulnerable modules?

Yes, it includes a CVE database and analyzes installed modules.

SUPPORT

CHANGELOG

Version 1.0.0

Initial release with 60+ penetration tests
Security scoring system
AI export for automatic fixes
Interactive back-office dashboard