wordpress-security
There are 94 repositories under wordpress-security topic.
olacabs/jackhammer
Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.
swisskyrepo/Wordpresscan
WPScan rewritten in Python + some WPSeku ideas
szepeviktor/waf4wordpress
WAF for WordPress 🔥 with 60+ security checks and weekly updates
KodoPengin/GameIndustry-hosts-Template
Unique host templates to enhance own privacy in games, websites and regulary software on Desktop and Android devices
pluginkollektiv/antivirus
Useful plugin that will scan your theme templates for malicious injections. Automatically. Every day. For more blog security.
umutphp/wp-vulnerability-check
A command line took to check the WPScan Vulnerability Database via API to identify the security issues of WordPress plugins installed.
chrispetrou/FastAudit
:shipit: A wordpress security auditor! Audit your wordpress application for security issues with even 1 request.
ihuzaifashoukat/wpaudit
WPAUDIT: Advanced WordPress security auditing suite & vulnerability scanner. Automates pentesting with Nmap, WPScan, Nuclei, SQLMap. Comprehensive reports. Ideal for ethical hackers & Kali Linux.
jurerotar/Wordpress-security-and-performance
Apache configuration and useful functions for more secure and performant Wordpress sites.
centminmod/centminmod-fail2ban
fail2ban setup for centminmod.com LEMP stack with CSF Firewall
frankiejarrett/prevent-concurrent-logins
Prevents users from being logged into the same WordPress site from multiple places.
password123456/setup-wordpress-with-security-best-practice
wordpress security best practice
relarizky/wpenum
Simple Bash Script For Collecting Wordpress Username
VolkanSah/WordPress-Security-Scanner-advanced-use
Advanced use of WPScan (WordPress Security Scanner) with other tools like nmap, nikto, owasp-zap, ids for ethnical Hackers
frankiejarrett/expire-passwords
Require certain users to change their passwords on a regular basis.
EngineScript/EngineScript
EngineScript is a super fast WordPress server built on Ubuntu and optimized for Cloudflare and Digital Ocean
chesio/bc-security
Helps keeping WordPress websites secure.
pluginkollektiv/blacklist-updater
Automatic updating of the comment blacklist in WordPress with antispam keys from GitHub.
AnonKryptiQuz/ICU-WP
ICU-WP is a Flask-based WordPress username enumeration tool. It detects WordPress sites and uses methods like author URL checks, REST API queries, and user detail endpoints to find usernames. Ideal for security assessments, this tool supports configurable timeouts and concurrency.
riotkit-org/wordpress-hardened
Secure and performant Wordpress installation on your Kubernetes cluster
AnonKryptiQuz/DeConfigro
DeConfigro is a tool that scans WordPress websites for the WordPress Setup Config Vulnerability. If exposed, this page indicates an incomplete installation and can be exploited, posing a security risk.
pluginkollektiv/checksum-verifier
Verifies MD5 checksums of WordPress core files, sends e-mail to the mail address of your admin user warning in case of threat. Just activate it and you are done.
littlebizzy/security-guard
Super easy security for WordPress
tinaponting/protect-wordpress
Protect wordpress with .htacess for paranoid bloggers
Ayesh/WordPress-Password-Hash
Wordpress plugin to change its password hashing mechanism with PHP native password_* set of functions.
entr0pie/wp-multi-bruteforce
Script for bruteforcing multiple Wordpress Users (XMLRPC)
WPEzPz/wp-ezpz-tweaks
WP EzPz Tweaks is an all-in-one WordPress plugin that helps you personalize the admin panel appearances, clean your site code and remove unwanted features to increase its security and improve performance.
riotkit-org/waf-proxy
Web Appliaction Firewall reverse-proxy using Coraza WAF + Caddy with ready-to-use rulesets
robertpeteuil/wordfence-lockout-msgs
Wordfence Custom "Lockout" and "Blocked" Messages that Maximize Security by minimizing information provided to attackers
Jazz-Man/wp-performance
The main task of this plugin is to increase the security of the site and improve the performance of the site by disabling completely unnecessary hooks and also optimizing SQL queries
Codeconut-Ltd/WordPress-Plugin-Default-Config
WordPress plugin with some hardcoded, opinionated defaults for enhanced security and frontend performance. Reduced feature set that might not work with all plugins. Only use if you know what you need.
joho1968/cloudbridge-mattermost
Provides Mattermost 5-10 integration for WordPress 5/6.
niksmac/wpevalfix
This script will remove the malicious eval() code in Wordpress installation.
nnamdei/wordpresshack
Need a security hardened wordpress installation without plugins? Head to your functions.php file in your theme or create one if it does not exist or download this repo and rename it according.
quentin-ld/zenpress
ZenPress is a lightweight, super-fast plugin that boosts your WordPress & WooCommerce website through a wide range of solid actions. Combined with Cache Enabler, Autoptimize and SQLite Object Cache, ZenPress aim to be a free alternative to major premium performance plugins.
NavyTitanium/WordPress-Anomaly-Detector
Compare the files and folders of the original source code of WordPress against a website