Exploit Scanner WordPress Plugin
Last week I was reading the official WordPress blog and I came across an interesting plugin: WordPress Exploit Scanner. It basically scans your database entries and site files looking for suspicious lines of codes. On top of that it also looks for suspicious plugins, posts, pages, users and WordPress settings.
Here is a screenshot:
It is worth to run this plugin once in a while, and especially if you believe that a malicious user might have compromised your installation recently or in the past.
Related Posts
Sign-up To The Newsletter And Get A Free eBook
- Sign-up to the Daily Blog Tips newsletter and you will be able to download the "Make Money Blogging" eBook for free (worth $47).
- You will also receive tips to improve your blog, strategies to make money and useful resources from around the web.
12 Responses to “Exploit Scanner WordPress Plugin”
Sponsors
Popular Articles
- 28 Ways to Make Money with Your Website
- 43 Web Design Mistakes You Should Avoid
- 4 Steps to Increase Your Blog Traffic
- How to Find Advertisers for Your Website
- Top 25 SEO Blogs
- 101 Blog Tips I learned in 2006
- 30 Traffic Generation Tips
- 6 Ways to Speed Up Your Site
- 9 Hacks to Show Readers Your Best Stuff
- 50 Simple Ways to Gain RSS Subscribers
- The Best Website Taglines
- What Is Success?
- How to setup a 301 Redirect
- The 7 Characteristics of Good Domains
- 7 Ways to Promote your Site
- Top 25 Celebrity Blogs
- What Is A Blog?
- Blog Setup: 40 Practical Tips
- 10 Tips To Write Your Most Popular Post
- The Blog Post Checklist
- Interview: 12 Top Online Entrepreneurs
- What Is Bounce Rate?
- 20 SEO Terms You Should Know
- How To Choose A Blog Name
- 10 Tips to Sell Your Website on Flippa
- Top 25 Web Design Blogs
That’s a great plugin. I’ve been hit by an exploit, and while I was able to find out how to clean it up fairly easily, it’s not fun to waste time on.
I actually had a hacker, xurguxx or something like that, get into two of my sites along with many others are on my server a couple of weeks ago. Running this plugin revealed he had installed many php scripts in my uploads directory. Obviously, they’ve since been deleted.
In addition, he managed to delete all of my users so that I could not log in – had to log in from Cpanel. I have no idea how but it is what it is.
I read the same post you read about this plugin and I fully recommend it. If you have a lot of plugins, though, be aware. It can take a while and not everything it returns is malicious. Use Google to assure before altering code.
You might wish to check the link to the plugin in the WordPress plugin directory, now it says:
WordPress Exploit Scanner
You’ll want to fix the hyperlink on the link to the plugin!
Take care.
Never tried it but Exploit Scanner looks like something I could use. Thanks for the heads up!
I just wanted to give you a shoutout. You are a remarkable blogger and a role model to me! Thanks so much!
Sincerely,
Ben Lang
Very useful tool for security purpose. I will try it.
good plugin.once someone hacked my website.it was lot of headache for me.i needed to restore everything from backup
I know this but do not know how to fix if errors found as I am newbie and non-tech blogger
Looks like a useful plugin… with all this talk of wordpress hackers, I might give it a go.
Anybody using it out there? Any feedback?
I think the best way to turn away hackers is to forbid user upload besides blog administrator. Carefully check the functions which could be used to run malicious scripts or something that can compromise the blog security.
To come back to this plugin, it is really a useful gadget to examine exploits fast and conveniently. Worth a try. ^_^
While doing some updates and checks on my sites, I discovered that the exploit scanner plugin was actually CAUSING the problem and was advised by my hosting company to remove it. Not certain as to how this could have happened, and the hacking situation apparently penetrated all of my sites (11 total).