Platform Overview
A living status document for everything built, in progress, and planned on the SilentAuth platform. Updated as we ship.
Last updated: March 2026 — v5.3.3
Explore capabilities
What SilentAuth does
Multi-layer bot detection
SilentAuth combines behavioral analysis, cryptographic challenges, WebGL fingerprinting, and acoustic verification into a 4-layer stack that stops automated attacks without disrupting real users.
CAPTCHA docs99
Live features
7
Partially built
7
In progress
18
Coming soon
Authentication & Registration
5/7 liveUser account creation, login, password recovery, and session management.
Email/password sign up & sign in
Email confirmation on registration
Forgot password / reset password flow
Auth callback & session handling
Admin login (separate portal)
SSO / OAuth providers
2FA / MFA
Projects
7/7 liveMulti-project support with per-project API keys, domains, and configuration.
Create, edit, delete projects
Public key & secret key generation
Risk sensitivity slider per project
Allowed domains configuration
Integration code snippets (HTML, Node, PHP, Python)
Plugin config display (WordPress)
Installed domain tracking
CAPTCHA / Verification
11/12 liveInvisible bot detection and challenge-based verification using behavioral and cryptographic signals.
Invisible mode (no user interaction)
Visible CAPTCHA widget (slider/click)
4-layer security stack (Risk Engine → Challenge → Behavioral → VINAC-FM)
Layer 4 UI ready; acoustic protocol WIP
Security rules engine (pattern matching)
Session history with risk scoring
Challenge threshold configuration
Server-issued challenge nonces (anti-spoofing)
WebGL fingerprint cross-validation
Per-session randomized scoring thresholds
Proof submission & receipt generation
Receipt verification endpoint
VINAC-FM acoustic step-up (Layer 4)
Protocol under active development
Execution Gates
9/10 liveHuman-in-the-loop approval flow for high-risk AI agent and automated actions.
Intent declaration & registration
Approve / Deny intents (manual review)
High-assurance confirmation modal for critical-risk
Permit token issuance
Auto-approve / auto-deny policies
Policy priority ordering & quorum voting
Intent audit log
Gate webhooks (intent.pending, approved, denied, expired)
Intent expiry / TTL
Multi-party approval (quorum)
AI Agent Authorization
6/7 liveRegister and manage AI agents with fingerprints, framework tags, and behavioral risk control.
Register agents with fingerprint & framework
Active / paused / revoked status control
Auto-generated fingerprints
Last-seen tracking
Risk sensitivity per agent
Integration snippets (API usage examples)
Agent behavioral telemetry / per-session analytics
API Protection
6/7 liveRate limiting, user enumeration blocking, XML-RPC blocking, and REST API protection.
Endpoint-level protection rules
Rate limiting per IP / user
User enumeration blocking
XML-RPC blocking
API request logs with risk score
Live test console (full verification cycle)
Country-based restrictions
Country logging works; block rules UI coming
Blocklist
6/7 liveIP and ASN-level blocking with optional TTL, global blocklist, and whitelist support.
IP blocklist (add, toggle, remove)
ASN (datacenter/VPN) blocklist
IP whitelist (trusted sources)
TTL / expiry on entries
Reason tracking
Global admin blocklist
Geo-based auto-blocking rules
Threat Intelligence
5/7 liveCredential stuffing detection, threat event logging, and attack monitoring.
Credential stuffing event detection
Attack KPIs (attempts, blocked, rate)
Per-IP threat tracking with country & ASN
Mark attack as resolved
One-click IP blocking from attack screen
Automated attack response rules
Threat intelligence feed integration
Analytics & Monitoring
6/8 liveVerification trends, risk score history, threat breakdown charts, and request logs.
Verification volume over time (bar chart)
Risk score trend (line chart)
Threat type breakdown (pie chart)
KPI cards (attempts, verified, blocked, success rate)
Project filtering & date range selection
Real-time request log stream (500 entries)
CSV export
Export in WordPress plugin; dashboard export coming
Custom date range picker
Webhooks
4/5 liveEvent-driven webhooks for verification events and execution gate events.
Verification webhooks (passed, failed, threat.blocked, receipt.consumed)
Execution gate webhooks (pending, approved, denied, expired)
HMAC-SHA256 signature verification
Delivery history with status codes
Webhook retry logic
Failure count tracked; auto-retry not yet implemented
WordPress Plugin
12/12 liveFull-stack WordPress plugin covering all protection layers. Currently at v5.3.3.
WordPress core form protection (login, register, comments)
WooCommerce checkout & login protection
Contact Form 7, Gravity Forms, WPForms, Elementor, Ninja Forms, Fluent Forms
4 Protection Levels (Relaxed, Balanced, Strict, Maximum)
REST API protection with rate limiting
IP blocklist / whitelist sync
Execution Gate integration
VINAC-FM Layer 4 widget
Activity logs & dashboard widget
CSV log export
Country logging via Cloudflare headers
Auto-update via plugin version API
Other Platform Integrations
2/8 liveSDKs and integrations beyond WordPress.
JavaScript snippet (vanilla)
Docs & integration guide available
React SDK
Node.js SDK
Python SDK
Next.js integration guide
Docs available, no separate package yet
Shopify plugin
Terraform provider
GitHub Actions integration
Billing & Payments
2/9 liveSubscription management, plan upgrades, and invoice history.
Plan display (Free, Starter, Pro, Business)
Usage tracking (CAPTCHA, API, Gate verifications)
Stripe checkout session routing
Frontend routes to Stripe; backend edge function needs deployment
PayPal subscription routing
Frontend routes to PayPal; backend edge function needs deployment
Stripe customer portal
Routing implemented; edge function needs deployment
Invoice / billing history
UI placeholder present; not connected to payment provider
Automatic plan enforcement (feature gating)
Gates exist in UI; not enforced server-side yet
Proration & upgrade/downgrade logic
Usage-based overage billing
Team & Organization
3/6 liveMulti-user team management and role-based access.
Single-user account management
Password change
Profile / organization name
Team member invitations
UI exists; requires Business plan; backend not complete
Role-based access control (RBAC)
Audit log for team actions
Admin Panel
13/13 liveInternal admin tools for platform management, CMS, user management, and statistics.
User management (list, edit, delete, reset password)
CMS pages & blog posts
CMS menu items
Platform settings & feature flags
Plugin package management
Platform statistics dashboard
Threat intelligence overview
Admin notifications system
Security plugin management
Intent monitor
Global blocklist management
Admin rate limits configuration
VINAC-FM admin controls
VINAC-FM (Layer 4 Acoustic Auth)
2/6 liveUltrasonic frequency-based step-up verification that binds sessions to physical hardware.
VINAC-FM settings UI (frequency, duration, TTL)
UI is complete
WordPress plugin VINAC-FM widget
Widget renders and collects signals
Acoustic session binding protocol
Core protocol under active development
Certificate issuance on acoustic verification
Cross-device detection / same-device enforcement
Layer 3 fallback when audio unavailable
Want to report something missing or broken?
Use the contact form or reach out directly. Every issue reported helps us ship faster.