Support » Plugin: WP Hide & Security Enhancer » Can’t hide plugins from getting discovered

  • Resolved reeem

    (@reeem)


    Hi

    Thanks for all the efforts you make to help us secure our website.

    I used the plugin to hide my theme, WordPress files and the used plugins on my website. The problem I am facing here is that when I checked if my website’s info. is discoverable through a website like: https://www.wpthemedetector.com/

    I got these results:

    – The theme name was hidden successfully
    – It was detected that I am using a WordPress website (so it wasn’t hidden by your plugin)
    – Two of the used plugins on my website were detected (your plugin wasn’t able to hide them)

    Please tell me how can I fix these issues?

Viewing 6 replies - 1 through 6 (of 6 total)
  • Plugin Author Maya

    (@tdgu)

    Hi,
    Apparently, the wp theme detector, still see the two plugins on your site, that imply WordPress usage.
    Presuming all plugin options are active, keep in mind that even if used all that, including change site dependencies (assets) default URLs, some of the WordPress detectors may still see certain plugins, as seek specific fingerprints that belong to certain code (plugins and themes). If your site doesn’t use well-known plugins like WooCommerce, Elementor, Divi which are easy to track, you should be covered and others should not see anything related to WordPress.
    If using complex plugins ( WooCommerce, Elementor, JS Composer, Divi etc ) you can still hide through the PRO and a specialized functionality called Replacements, though this you can change virtually anything. For a demonstration, check against on our website https://www.wp-hide.com/

    Thanks

    Thread Starter reeem

    (@reeem)

    So this means that there is no solution for this issue except to get the pro version.

    I think having no solution for an issue like this makes using the whole plugin for free useless.

    This is because even though I was able to hide that I am using wordpress and I hided many other plugins I still let the hackers know that I am using wordpress through the plugins which remained unhidden, and I still give the hacker a chance to try at least to hack the website through the these two plugins.

    • This reply was modified 1 month, 2 weeks ago by reeem.
    Plugin Author Maya

    (@tdgu)

    Hi,
    Besides changing default URLs, cleaning the theme headers, striping specific tags and words, blocking unused services, cleaning headers etc. the free plugin can’t do more. So if using large plugins, others may still find it.

    Thanks

    Thread Starter reeem

    (@reeem)

    First, do you think the following two plugins which have been discovered are considered large plugins?

    – Rate my Post – WP Rating System
    – Strong Testimonials

    Second, can you please elaborate more about the below two functions you mentioned and how to activate or apply them?

    – striping specific tags and words
    – blocking unused services

    Plugin Author Maya

    (@tdgu)

    Hi,
    Not really, still they appear to do outputs that are obvious for the detector to figure.
    For example, the plugin can strip for tags like WordPres meta generator, Custom meta generator, wlwmanifest, profile etc. Mainly you can find those at WP Hide > General / HTML > Meta. Specific words, like default /wp-admin/ are removed at robots.txt through the WP Hide > General / HTML > Robots.txt. Services like JSON REST and XML-RPC endpoints can be change and even blocked through WP Hide > Rewrite section.

    Thanks

    Thread Starter reeem

    (@reeem)

    Alright thanks a lot!

Viewing 6 replies - 1 through 6 (of 6 total)
  • You must be logged in to reply to this topic.