how to make sure the nulled files you got are safe?

Started by zurickleo, 09-02-2019

1092
9
how to make sure the nulled files you got are safe?
  09-02-2019, 04:02 AM
#1
I mean, it could have many unwanted and dangerous scripts, so could you share your tips to make sure is 100% safe?
I mean, 100% should be "buy the product", but at least 99% safe

  09-02-2019, 07:34 AM
#2
Use Google. Here's an older, but still relevant article that gives a few strategies. Another poster copied and pasted this article a while ago, it has some decent relevant material still.

If you do some research and find any articles providing valuable insight, please post a link to the actual source article because often times there's some really good comments from experienced web admins. There's some folks on here trying to take credit for articles they couldn't possibly write if their life depended on it, it's always a good idea to link to a source so everyone can benefit from the knowledge collectively and possibly have some meaningful discourse.

An even easier answer is to just get whatever Shadow releases. If you look at the sheer volume of items he has released and the fact he has zero issues....that just speaks for itself frankly. In point of fact I (and likely many other forum members) only began to frequent this forum because of his releases. No shill, just throwing facts.


n00b logo generator CoolText Logo Gen

  09-02-2019, 09:42 PM
#3
with a scan or in virtual machine :)

  09-02-2019, 09:59 PM
#4
(09-02-2019, 07:34 AM)simplefool Wrote:
Use Google.  Here's an older, but still relevant article that gives a few strategies. Another poster copied and pasted this article a while ago, it has some decent relevant material still.

If you do some research and find any articles providing valuable insight, please post a link to the actual source article because often times there's some really good comments from experienced web admins. There's some folks on here trying to take credit for articles they couldn't possibly write if their life depended on it, it's always a good idea to link to a source so everyone can benefit from the knowledge collectively and possibly have some meaningful discourse.

An even easier answer is to just get whatever Shadow releases. If you look at the sheer volume of items he has released and the fact he has zero issues....that just speaks for itself frankly. In point of fact I (and likely many other forum members) only began to frequent this forum because of his releases.  No shill, just throwing facts.

this right here

  09-02-2019, 10:27 PM
#5
typically, I only use virustotal scan. I think its not quite enough though.

  09-03-2019, 02:12 AM
#6
(09-02-2019, 10:27 PM)Linnl71 Wrote:
typically, I only use virustotal scan. I think its not quite enough though.

You're accurate in that assumption. Sometimes a theme/plugin or whatever needs to be decrypted via base64, sometimes that only happens when it gets used. Once ANY file has been decrypted (be it base64 or some other encryption), copy that plain text (from the WP console) and run it though a script or virus scanner (like virustotal) to see if it's calling another server or creating a backdoor account (or escalating an existing one). Doing this is safest in a sandboxed installation of WordPress or one installed and run on a VM with something tracking outbound network connections (like NetStat, Wireshark or Currports) or even use your home router to record/monitor those outbound connections to see if any rogue element is trying to establish an outbound connection.

Also, don't always assume a nulled element trying to "phone home" or "dial out" is a malicious connection, sometimes individuals who null WP themes and plugins need to set up a server for that element to connect to in an effort to fully unlock the retail functions of said theme or plugin. In other words, don't assume any and all unauthorized connections are malicious, even though generally that's the best assumption to make. ASK whomever nulled that element if they set up a server to unlock it. This DOES happen, it used to be rare, but it's happening more and more often now.

There's a lot of discourse on these strategies here.


n00b logo generator CoolText Logo Gen

  02-11-2020, 05:07 AM
#7
I agree with scanning and virtual machine. I would never use any nulled/hacked version for production purposes. Which means sandboxed VM with no internet or physical network access. After evaluating if you like it buy it then delete the VM.

  02-26-2020, 11:39 AM
#8
nice thread and nice answer, adding knowledge from this thread thanks a lot

  02-27-2020, 10:06 AM
#9
One of the plugins I use is "Script Locator" to find and remove harmful stuff embedded within the wordpress site.

Scam scripts like go oclasrv can easily be found and removed

I would also suggest ithemes security pro, then look up for the most updated list of ip addresses that attack wordpress sites, and add that list to the blocked section of the security plugin. Even if you are unable to find a script, the source will be blocked from viewing or accessing your site.

  02-28-2020, 02:04 PM
#10
(09-02-2019, 07:34 AM)simplefool Wrote:
Use Google.  Here's an older, but still relevant article that gives a few strategies. Another poster copied and pasted this article a while ago, it has some decent relevant material still.

If you do some research and find any articles providing valuable insight, please post a link to the actual source article because often times there's some really good comments from experienced web admins. There's some folks on here trying to take credit for articles they couldn't possibly write if their life depended on it, it's always a good idea to link to a source so everyone can benefit from the knowledge collectively and possibly have some meaningful discourse.

An even easier answer is to just get whatever Shadow releases. If you look at the sheer volume of items he has released and the fact he has zero issues....that just speaks for itself frankly. In point of fact I (and likely many other forum members) only began to frequent this forum because of his releases.  No shill, just throwing facts.

i was also concerend about it, thanks for articles :)

« Next Oldest | Next Newest »


Possibly Related Threads…
Thread Author Replies Views Last Post
Have Avada 7 original, can you null it? islas 0 15 Yesterday, 01:21 PM
Last Post: islas
Dooplay 2.4.1 Nulled (Megathread) Shadow 741 110,091 Yesterday, 12:30 AM
Last Post: m3dz
Not Nulled AnimeStream WordPress Theme iubv 10 764 10-20-2020, 05:35 AM
Last Post: sephs
Retail vs Nulled? Alanon 163 17,502 10-15-2020, 10:02 AM
Last Post: sims07
Need help nulled this movie theme huuthi95 0 39 10-11-2020, 01:27 PM
Last Post: huuthi95
Which software you use to generate invoice/bills for your clients? eatit007 16 423 09-30-2020, 06:45 PM
Last Post: eatit007
How to detect Malicious code in nulled or Free WordPress Themes and Plugins ism22 75 7,281 09-22-2020, 09:15 PM
Last Post: Dewxon
Wan't to create a forum like nulled, for fitness toxykdude 6 297 09-21-2020, 10:19 PM
Last Post: reg
nulled software and scripts are infected? how scan? logeoff 30 2,362 09-20-2020, 12:49 AM
Last Post: Stevenknowswhy
Malwares inside nulled themes? foto1 3 277 09-02-2020, 05:45 PM
Last Post: Demoon_19



1 Guest(s)