WordPress File Monitor

Description

Features

  • Monitoring file system for added / deleted / changed files.
  • Tracking changes of the file size, modification date, permissions, file content.
  • Sending email with the detailed information when changes are detected.
  • Displaying monitor alerts in the administration area.
  • Monitoring files for changes based on file hash, time stamp and/or file size.
  • Excluding files and directories from scan.
  • Allows to run the file checking via an external cron so not to slow down visits to your website and to give greater flexibility over scheduling.
  • Allows to include / exclude files from scanning by extension.
  • Properly tracks broken symlinks and unreadable files.
  • Multisite compatible (plugin settings are located under the Settings menu of the main website).

This plugin is a fork of the WordPress File Monitor Plus plugin which has not been updated for 5 years and contained a bunch of critical security issues.

Keep Your Website Secure

This simple but functional plugin allows you to monitor your entire WP installation for unwanted file changes (even for file permissions change!) and promptly notify you in case of something. Everyone whose website was hacked once knows how it is complicated to detect infiltration on initial stage and to find all changes in the file system. This plugin does a job.

Be sure to install it on malware-free website, set correct ‘File Check Root’ in plugin’s settings, and make sure all check-boxes in ‘File Check Method’ are ticed for file changes better recognizing.

Languages

  • Russian
  • Arabic
  • German
  • Japanese

Credits

Thanks to the LikeBtn for providing a rating feature for my plugin.

Screenshots

  • Settings
  • Admin alert
  • Admin changed files report
  • Email changed files report

Installation

  • Upload to a directory named “wordpress-file-monitor” in your plugins directory (usually wp-content/plugins/).
  • Activate the plugin.
  • Visit Settings page under Settings -> WordPress File Monitor in your WordPress Administration Area (if you are using WordPress in a Multisite mode, the plugin settings are located under the Settings menu of the main website)
  • Configure plugin settings.

FAQ

Installation Instructions
  • Upload to a directory named “wordpress-file-monitor” in your plugins directory (usually wp-content/plugins/).
  • Activate the plugin.
  • Visit Settings page under Settings -> WordPress File Monitor in your WordPress Administration Area (if you are using WordPress in a Multisite mode, the plugin settings are located under the Settings menu of the main website)
  • Configure plugin settings.
Only admins can see the admin alert. Is it possible to let other user roles see the admin notice?

Yes you can, add the following code to your wp-config.php file: define('WFM3_ADMIN_ALERT_PERMISSION', 'capability'); and change the capability to a level you want. Please visit Roles and Capabilities to see all available capabilities that you can set to.

Reviews

Perfect plugin for changes detection in your WP installation

Would wish to thank plugin author for it first of all.

Wondering why there are so few active installs. This simple but functional plugin allows you to monitor your entire WP installation for unwanted file changes (even for file permissions change!) and promptly notify you in case of something. Everyone whose website was hacked once knows how it is complicated to detect infiltration on initial stage and to find all changes in the file system. This plugin does a job.

Be sure to install it on malware-free website, set correct ‘File Check Root’ in plugin’s settings, and tick all check-boxes in ‘File Check Method’ for file changes better recognizing. And to keep you website files structure (at least its system areas) actual backup somewhere for files further compare/replace in case of need.

As one the ways of this plugin popularity improving can recommend its author to place clear and detailed description of plugin settings with recommended options. And to provide it with preset ‘File Check Method’ (with ‘File Hash’ tick at least) – to make it workable from the very beginning.

Really Works

Amazing plugin, really. Would be nice to be able to delete an specific found file and select 15 min time interval for scans. But hey! i’m fighting an malware here. Your tools is a great help;

Will save your precious time some day!

Go and install it right away! You have no idea how much time you’d save by doing it NOW!

Best plugin to log, track, and monitor the file changes.

Background:

Earlier, I was using a plugin that contained file monitoring as one of the features. That plugin was heavily bloated with numerous other features that I wouldn’t use. Have been looking for a dedicated plugin for files monitoring. This fits my use case perfectly. What’s more the author of this plugin, @nicolly, is responsive on the support forum, even though he’s not obliged to do so as this is a free plugin. Even my stupid feature request was accepted and fixed the underlying problem in my own workflow.

This is a gem. Currently, switching it in place of the other plugin on all my clients’ sites!

Read all 8 reviews

Contributors & Developers

“WordPress File Monitor” is open source software. The following people have contributed to this plugin.

Contributors

Changelog

1.0.6

  • Fix: Fixed cannot redeclare pcre_fnmatch notice
  • Fix: Fixed notice when file_check_method was not set

1.0.5

  • Added: Proper tracking broken symlinks and unreadable files
  • Added: Plugin now can be translated at https://translate.wordpress.org/projects/wp-plugins/file-changes-monitor

1.0.4

  • Fixed: Fixed get_home_path function not working occasionally on HHVM installations

1.0.3

  • Added: Track file permissions changes
  • Added: Instructions for excluding files/dirs

1.0.0

  • Lauched.