WordPress.org

Plugin Reviews

Exploit Scanner

Search the files and database of your WordPress install for signs that may indicate that it has fallen victim to malicious hackers.

23 reviews
Average Rating
3.3 out of 5 stars
What even is this
By , for WP 4.4.2

All it does is scan your fields for instances of "eval" and "base64_decode" and flags them as severe (both of which are used fairly widely by plugins anyway). It even flags its own readme as being potentially malicious. What a waste of time.

Did what it was supposed to do
By , for WP 4.3.1

Found a few files that had been hacked. Thanks for finding them.

Great Plugin for Devs
By , for WP 4.3.1

Great plugin for devs, finds pretty much anything, Wordfence did not!
Keep up the good work Dev!

It works if you read
By , for WP 4.3.1

Used the plugin to discover a few infected files not detected by other security plugins. It works great if you manage to identify the infected files in the loong list. Yes, a lot of the listed files are clean.

it detected base64_decode('IyBCRUdJTiBXb3JkUHJlc3MKPEl
By , for WP 4.2.4

it detected core file changes by codes base64_decode('IyBCRUdJTiBXb3JkUHJlc3MKPEl...

For advanced users but GOOD!
By , for WP 4.2.2

I could find some files I didn't catch nor wordfence. I had a very malicious hacker on a website and it was really dirty.

impossible to work with
By , for WP 4.2.2

Really too many false positives. So what I'm supposed to do now?

Error occurred during scan
By , for WP 4.1.1

No error message besides the 'Error occurred' message. This is clearly broken, at least for WP multisites.

Great Plugin
By ,

Must plugin for a WordPress web site. You can use it in combo with kali linux, and build a secure wall to your web site..

Really Works
By , for WP 4.1.1

After grabbing the latest hash tags from https://github.com/philipjohn/exploit-scanner-hashes, I was able to get this to scan my site. Awesome work!

You must log in to submit a review. You can also log in or register using the form near the top of this page.