WordPress.org

The Total Security plugin is the must-have tool when it comes security of your WordPress installation. The plugin monitors your website for security weaknesses that hackers might exploit and tells you how to easily fix them.

Vulnerability Scan

• Check your site for security vulnerabilities and holes.
• numerous installation parameters tests
• Apache and PHP related tests
• file permissions
• WP options tests
• detailed help and description

Core Exploit Scanner

• scan WP core files with one click
• quickly identify problematic files
• great for removing exploits and fixing accidental file edits/deletes
• view files source to take a closer look
• fix broken WP auto-updates
• restore modified files with one click

Unsafe Files Search

Scours your file system by suspicious or potentially malicious files, compressed, log, binary, data, and temporary files. And any unknown file in WP core.

• Detects unknown file found in WP core => |any file|
• Detects suspicious or potentially malicious files => |.exe|.com|.scr|.bat|.msi|.vb|.cpl|
• Detects compressed files => |.zip|.rar|.7z|.gz|.tar|.bz2|
• Detects log, binary, data and temporary files => |.log|.dat|.bin|.tmp|

Error 404 Log

Logs 404 (Page Not Found) errors on your site, this also gives the added benefit of helping you find hidden problems causing 404 errors on unseen parts of your site as all errors will be logged.

Best practices on security combined into one plugin! It does not remove or modify anything. That is left to the user to do.

Usage

For Vulnerability Scan: Once you click the One Click Scan button all tests will be run,

For Core Exploit Scanner: Once you click the One Click Scanner button all tests will be run,

depending on various parameters of your site this can take from ten seconds to 2-3 minutes. Please don't reload the page until testing is done.

Each test comes with a detailed explanation which you should use to determine whether it affects your site or not. Most test have simple to follow instructions on how to strengthen your site's security.

Color-coded results separate files into categories:

• Items in green are fully secured. Good job!
• Items in orange are partially secured. Turn on more options to fully secure these areas
• Items in red are not secured. You should secure these items immediately

A warning to redo the scan will be informed every 15 days of last inspection.

Languages Available

• English (default)
• German (de_DE) translation by Silvio Paschke

How To Contribute

We'd love for you to get involved. Whatever your level of skill or however much time you can give, your contribution is greatly appreciated.

• Users - download the latest development version of the plugin, and submit bug/feature requests.
• Non-English Speaking Users - Contribute a translation using the GlotPress web interface - no technical knowledge required (how to).
• Developers - Fork the development version and submit a pull request.