Title: Nyambush Author: y1uda Published: February 26, 2026 Last modified: February 26, 2026 --- Search plugins ![](https://ps.w.org/nyambush/assets/banner-772x250.png?rev=3470750) ![](https://ps.w.org/nyambush/assets/icon-256x256.png?rev=3470748) # Nyambush By [y1uda](https://profiles.wordpress.org/y1uda/) [Download](https://downloads.wordpress.org/plugin/nyambush.1.0.2.zip) * [Details](https://wordpress.org/plugins/nyambush/#description) * [Reviews](https://wordpress.org/plugins/nyambush/#reviews) * [Installation](https://wordpress.org/plugins/nyambush/#installation) * [Development](https://wordpress.org/plugins/nyambush/#developers) [Support](https://wordpress.org/support/plugin/nyambush/) ## Description Nyambush is an Attack Surface Management (ASM) plugin that connects your WordPress site to the [Nyambush platform](https://nyambush.app) for continuous security monitoring. **Features:** * **Automatic Environment Scanning** – Collects WordPress version, PHP version, installed plugins, themes, and security configuration * **Vulnerability Detection** – Cross-references your plugins and themes against known vulnerability databases * **Dashboard Widget** – View your security status at a glance from the WordPress admin dashboard * **Scheduled Sync** – Automatically syncs your site data at configurable intervals * **Encrypted API Key Storage** – Your API key is encrypted at rest using AES-256- GCM * **Data Minimization** – Only collects configuration data; never collects passwords, database credentials, or post content **How It Works:** 1. Sign up at [nyambush.app](https://nyambush.app) and add your domain 2. Generate a WordPress verification API key 3. Install this plugin and enter your API key 4. Your site will be automatically monitored for vulnerabilities **Privacy:** This plugin sends the following data to nyambush.app: * WordPress and PHP versions * List of installed plugins and themes (names, versions, active status) * Number of users by role * Debug mode and SSL status * File permissions for critical files (wp-config.php, .htaccess) No passwords, database credentials, post content, or personal user data is collected or transmitted. * [Nyambush Terms of Service](https://nyambush.app/terms) * [Nyambush Privacy Policy](https://nyambush.app/privacy) ## Installation 1. Upload the `nyambush` folder to the `/wp-content/plugins/` directory 2. Activate the plugin through the ‘Plugins’ menu in WordPress 3. Go to Settings Nyambush 4. Enter your API key from [nyambush.app](https://nyambush.app) 5. Click “Save Settings” to connect ## FAQ ### Where do I get an API key? Sign up at [nyambush.app](https://nyambush.app), add your domain, and select “WordPress Plugin” as the verification method. You will receive an API key. ### What data does this plugin collect? The plugin collects non-sensitive configuration data: WordPress/PHP versions, installed plugins and themes (names and versions), user role counts, debug mode status, SSL status, and file permissions for critical files. No passwords, database credentials, or post content is ever collected. ### Does this plugin slow down my site? No. Data collection only occurs during scheduled sync events (twice daily by default) or when you manually trigger a sync from the admin panel. It does not affect frontend performance. ### Is my API key stored securely? Yes. Your API key is encrypted using AES-256-GCM (authenticated encryption) before being stored in the database. The encryption key is derived from your WordPress auth salt. ### What WordPress versions are supported? This plugin supports WordPress 4.0 and above. ## Reviews There are no reviews for this plugin. ## Contributors & Developers “Nyambush” is open source software. The following people have contributed to this plugin. Contributors * [ y1uda ](https://profiles.wordpress.org/y1uda/) [Translate “Nyambush” into your language.](https://translate.wordpress.org/projects/wp-plugins/nyambush) ### Interested in development? [Browse the code](https://plugins.trac.wordpress.org/browser/nyambush/), check out the [SVN repository](https://plugins.svn.wordpress.org/nyambush/), or subscribe to the [development log](https://plugins.trac.wordpress.org/log/nyambush/) by [RSS](https://plugins.trac.wordpress.org/log/nyambush/?limit=100&mode=stop_on_copy&format=rss). ## Changelog #### 1.0.2 * Bump minimum PHP version from 5.6 to 7.0 #### 1.0.0 * Initial release * WordPress environment data collection * Nyambush platform integration * Dashboard vulnerability widget * Scheduled and manual sync * AES-256-GCM API key encryption * Japanese language support ## Meta * Version **1.0.2** * Last updated **1 month ago** * Active installations **Fewer than 10** * WordPress version ** 4.0 or higher ** * Tested up to **6.9.4** * PHP version ** 7.0 or higher ** * Tags * [monitoring](https://wordpress.org/plugins/tags/monitoring/)[scanner](https://wordpress.org/plugins/tags/scanner/) [security](https://wordpress.org/plugins/tags/security/)[vulnerability](https://wordpress.org/plugins/tags/vulnerability/) * [Advanced View](https://wordpress.org/plugins/nyambush/advanced/) ## Ratings No reviews have been submitted yet. [Add my review](https://wordpress.org/support/plugin/nyambush/reviews/#new-post) [See all reviews](https://wordpress.org/support/plugin/nyambush/reviews/) ## Contributors * [ y1uda ](https://profiles.wordpress.org/y1uda/) ## Support Got something to say? Need help? [View support forum](https://wordpress.org/support/plugin/nyambush/) ## Donate Would you like to support the advancement of this plugin? [ Donate to this plugin ](https://nyambush.app)