Protect your WordPress from malware / spoofed codes

Started by null, 06-26-2018

49574
542
IMPORTANT Protect your WordPress from malware / spoofed codes
  06-26-2018, 04:41 AM
#1
[Image: 6EHQA5V.png]
Detailed guidance on how to protect and increase the security of your WordPress site.


Better safe than sorry!

To make sure you are running a safe version of the theme or plugin you download from NulledForums, we advise you to install Wordfence plugin from WP store.

https://wordpress.org/plugins/wordfence/

The plugin above includes real-time malware scanning and it finds the most common obfuscated codes. The free version of the plugin covers just about everything you need. Of course, this plugin is not something you can be 100% sure is always accurate. Web devs are finding nasty ways to inject codes and manual inspection is highly recommended. Don't trust anyone or any site which offers nulling content, not even this site as the content here is provided by site users.

Wordfence in action
After doing a scan, it shows that there are no file changes nor malware and/or spoofed codes, the vulnerability part means that plugins are outdated as shown on the image below.

[Image: Mzutuog.png]

More advanced code inspection

The more advanced way of checking for spoofed codes would be manually searching through files.

You can use Notepad++ and then Find-In-Files option which you can find on search part.
[Image: screenshot-174.png]

What to search for?
  • wp_vcd is a common WordPress malware backdoor which sends information to attackers server. if you find this, either remove the complete function or DO NOT install it.
  • base64 a very nasty way of obfuscating scripts which sends back information to attackers server.
There are more cases, but those two are the most common one.

[Image: screenshot-175.png]

Additional security steps
  • Change /wp-admin location and don't include it as a visible link which can be seen through inspect element or page source.
  • Include reCaptcha protection on every login / register / password reset pages to stop common brute-force attacks.
  • Encrypt origin server with SSL (for example Let's encrypt and if you are using Cloudflare use full-strict crypto mode).
  • Use page rules from cloudflare to protect your admin login page with whitelisted IPs.
There are many more steps you can utilize, but if you need all of this you are already an experienced web dev that already knows more than enough to do it alone.


[-]
No Permission
You cannot reply or view replies as a guest.

Create an Account

Create a free account today and get all features available. It only takes a few seconds.

Log In

Log into an existing account.


« Next Oldest | Next Newest »


Possibly Related Threads…
Thread Author Replies Views Last Post
NULLED Really Simple SSL Pro 5.2.0 – Secure Your Site Today Creature 38 579 09-17-2021, 04:14 PM
Last Post: Creature
NULLED Smart QR Codes Generator 2.1 Creature 12 287 09-17-2021, 04:12 PM
Last Post: Creature
NULLED WP-Optimize Premium 3.1.6 - Keep Your Database Fast & Efficient Shadow 65 1,958 09-03-2021, 06:09 AM
Last Post: Zidl
NULLED Media Cleaner Pro 6.1.4 - Clean your WordPress Dr1zZl3 46 587 08-21-2021, 10:51 AM
Last Post: aldr0n
NULLED WP-Optimize Premium 3.1.2 - Keep Your Database Fast & Efficient Physkx 59 3,002 08-13-2021, 05:32 PM
Last Post: fl4me
RETAIL Feedzy RSS Feeds 1.6.8 - Import RSS Feeds Anywhere in Your Site Shadow 19 1,061 07-24-2021, 01:39 PM
Last Post: joozzssrudy
NULLED Gravity Flow 2.5.3 (+AddOns) - Automate your business processes with Gravity For Shadow 18 770 07-16-2021, 07:08 PM
Last Post: tupaic
RETAIL GravityView 2.5 (+AddOns) - Display Gravity Forms Entries on Your Website Shadow 27 983 07-11-2021, 12:22 PM
Last Post: mikehu44
NULLED Media Cleaner Pro 6.0.6 - Clean your WordPress Shadow 60 1,241 07-02-2021, 02:39 AM
Last Post: aldoflores22000
NULLED WP Hide Pro 2.2.8.1 - Hide and protect the WP site Shadow 111 2,278 06-12-2021, 09:44 AM
Last Post: badburn



1 Guest(s)