Guard Dog Security & Site Lock

Guard Dog Security & Site Lock helps WordPress administrators keep their websites clean, protected, and easier to audit directly from the WordPress dashboard. Guard Dog gives site owners visibility into what exists on the server, what has changed, what may be risky, and whether important WordPress files are still intact. It combines folder and file auditing, Site Lock protection, Watch Dog file change monitoring, WordPress core integrity checks, infection scanning, cleanup utilities, and security tools into one practical WordPress security suite. Over time, WordPress websites often collect leftover plugin folders, abandoned theme files, old uploads, temporary files, suspicious scripts, modified files, and other items that are easy to miss. These files can create confusion during troubleshooting, waste storage, and in some cases create security risks. Guard Dog helps identify and review those items so administrators can view, download, ignore, delete, approve, or investigate them from one place. Site Lock One of the easiest ways for a compromised user, vulnerable plugin, or attacker to damage a WordPress site is by adding, changing, or deleting physical files. The Site Lock feature helps protect against this by allowing you to lock important files and folders so they become read-only. When Site Lock is active, protected files and folders cannot be changed through normal write operations. This can help prevent unwanted file additions, injected scripts, unauthorized edits, and accidental deletions. When legitimate updates or maintenance are needed, you can unlock the site, perform the changes, and then apply Site Lock again. Watch Dog File Change Monitor Watch Dog is a trusted baseline system for detecting file changes across your WordPress installation. Watch Dog allows you to create a trusted snapshot of your site files. Future scans compare the current file state against that baseline and report anything that is new, modified, or deleted. This is especially helpful after WordPress updates, plugin updates, theme changes, malware cleanup, or suspicious activity. Watch Dog File Change Monitor includes:

• Trusted baseline creation and rebuilding
• Manual file change scans
• Scheduled file change scans
• Email alerts when file changes are detected
• Detection for new, modified, and deleted files
• File risk labeling
• File preview and detail modal
• Download detected files for review
• Approve trusted changes
• Delete unwanted detected files
• Bulk actions for faster review
• Baseline exclusions for folders and individual files
• Automatic exclusion of internal Watch Dog storage files
• Protected baseline storage under wp-content/uploads/guard-dog/watch-dog/
• AJAX actions with loading overlays and in-page confirmations
• Site Lock compatibility so Watch Dog can still write to its protected storage location

Watch Dog Core Check Watch Dog Core Check verifies WordPress core file integrity by comparing installed WordPress core files against the official WordPress.org checksum API. Core Check is designed to verify WordPress core areas only. It checks WordPress root core files, wp-admin, and wp-includes. It does not scan plugins, themes, uploads, custom content, or bundled wp-content files as part of the core verification. Watch Dog Core Check can report:

• Modified WordPress core files
• Missing WordPress core files
• Unreadable WordPress core files
• Unexpected files found inside core areas

Core Check includes:

• Manual core integrity checks
• Scheduled core checks
• Email alerts when core issues are found
• Branded core issue notification emails
• Styled results table matching the Watch Dog interface
• View, download, delete, and ignore actions for reported files
• Dedicated Core Check settings for schedule and email recipient

Folder & File Auditor Guard Dog takes a disk-first approach. It crawls your WordPress installation and inventories files and folders in important areas of the site. This makes it possible to identify hidden files, orphaned plugin folders, leftover theme folders, unexpected PHP files in uploads, .htaccess files, and other items that may not appear in normal WordPress admin screens. Guard Dog audits the following areas:

• WordPress root directory
• wp-content directory
• Plugins directory
• Themes directory
• Uploads directory
• .htaccess files

Infection Scanner The Infection Scanner helps review site files and database content for suspicious patterns that may indicate malware, injected code, hidden scripts, or unsafe content. This tool is designed to help administrators quickly identify items that deserve review during a cleanup or security investigation. It can be used alongside the auditor, Watch Dog, Plugin Refresher, Theme Refresher, and Permissions Check tools to improve the cleanup process. Plugin Refresher Plugin Refresher is a powerful cleanup tool for infection recovery. It allows WordPress.org plugins to be refreshed with clean copies using a safer queued process. This helps replace altered, damaged, missing, or infected plugin files while keeping visibility into installed versions, available versions, update status, and plugin freshness. Plugin Refresher includes:

• Individual plugin refreshes
• Bulk plugin refreshes with selectable plugins
• Queued native WordPress upgrader process
• Branded progress feedback
• Bulk refresh progress window
• Refreshed count, remaining count, percentage complete, and progress bar
• Navigation protection during bulk refreshes
• Automatic progress window close when refreshes complete
• Installed version and available version details
• Update status for each plugin
• Last updated data from WordPress.org
• Separate manual refresh/install table for plugins not available on WordPress.org
• Stronger detection for WordPress.org plugin availability

Theme Refresher Theme Refresher works like Plugin Refresher, but for WordPress.org themes. It allows WordPress.org themes to be refreshed with clean copies using a queued native WordPress upgrader process. This can be helpful when theme files have been changed, damaged, infected, or need to be restored from a clean WordPress.org source. Theme Refresher includes:

• Individual theme refreshes
• Bulk theme refreshes with selectable themes
• Queued native WordPress upgrader process
• Branded progress feedback
• Installed version and available version details
• Update status for each theme
• Last updated data from WordPress.org
• Separate manual refresh/install table for themes not available on WordPress.org
• Stronger detection for WordPress.org theme availability

Permissions Check Permissions Check reviews important WordPress file and folder permissions that can make infection cleanup harder or allow altered files to be changed again. The tool shows current permissions, recommended permissions, status, and available actions. High-risk items are shown first, followed by items that need attention, then good items. Permissions Check includes:

• Current and recommended permission values
• Good, Needs Attention, and High Risk status counts
• High Risk detection for unsafe writable files
• Needs Attention detection for folders not using recommended permissions
• Special handling for wp-config.php
• Detection for wp-config.php in the WordPress root or parent directory
• Permission repair actions for files and folders that can be safely updated
• 403-safe fallback handling for permission repair requests blocked by admin-ajax.php
• Sorted results so the most important items appear first

Security Tools Guard Dog includes practical tools for cleanup, investigation, verification, and hardening:

• Plugin Refresher
• Theme Refresher
• File Finder & Remover
• Permissions Check
• Blacklist Check
• SSL Information
• Security Headers
• User Security Enhancements
• Infection Scanner
• Exportable audit and security reports

Key Features

• Lock site files and folders with Site Lock
• Audit WordPress root, wp-content, plugins, themes, uploads, and .htaccess files
• Detect hidden, orphaned, or unexpected plugin and theme folders
• Detect PHP files inside uploads
• View, download, ignore, include, or delete files from the dashboard
• Scan for suspicious files using the Infection Scanner
• Run database infection scans for harmful data
• Configure security headers
• Strengthen user security settings
• Reinstall clean plugin copies with Plugin Refresher
• Reinstall clean theme copies with Theme Refresher
• Check important WordPress file and folder permissions
• Repair fixable permission issues from the dashboard
• Check SSL certificate details with SSL Information
• Check blacklist and reputation status with Blacklist Check
• Create Watch Dog file baselines
• Detect new, modified, and deleted files
• Verify WordPress core files with the official checksum API
• Schedule Watch Dog file change scans and Core Check scans
• Send branded email alerts when issues are found
• Use AJAX-powered admin navigation and action overlays
• Export reports for review or record keeping

7.1

• Added Plugin Refresher tool to securely refresh WordPress.org plugins with clean copies.
• Added queued native WordPress upgrader process for safer and more reliable plugin refreshes.
• Added bulk plugin refresh support with selectable plugins.
• Added individual plugin refresh support with branded progress feedback.
• Added branded Bulk Refresh Running window with progress tracking.
• Added refreshed count, remaining count, percentage complete, and progress bar to bulk refresh progress.
• Added navigation protection during bulk refreshes to help prevent users from leaving before completion.
• Added automatic window close behavior once refresh processes complete.
• Added installed version and available version details to the Plugin Refresher table.
• Added Update column to show whether each plugin is current or needs an update.
• Added Last Updated column using WordPress.org plugin data.
• Added separate manual refresh/install table for plugins not available on WordPress.org.
• Added stronger detection for WordPress.org plugin availability.
• Added Theme Refresher tool to securely refresh WordPress.org themes with clean copies.
• Added queued native WordPress upgrader process for safer and more reliable theme refreshes.
• Added bulk theme refresh support with selectable themes.
• Added individual theme refresh support with branded progress feedback.
• Added installed version and available version details to the Theme Refresher table.
• Added Update column to show whether each theme is current or needs an update.
• Added Last Updated column using WordPress.org theme data.
• Added separate manual refresh/install table for themes not available on WordPress.org.
• Added stronger detection for WordPress.org theme availability.
• Added Theme Refresher card to the main Tools page.
• Added Theme Refresher item to the Tools dropdown menu.
• Added Permissions Check tool to review important WordPress file and folder permissions.
• Added Permissions Check card to the main Tools page.
• Added Permissions Check item to the Tools dropdown menu.
• Added permission status counts for Good, Needs Attention, and High Risk items.
• Added current and recommended permission values to the Permissions Check table.
• Added Actions column to the Permissions Check table.
• Added permission repair actions for files and folders that can be safely updated.
• Added 403-safe fallback handling for permission repair requests blocked by admin-ajax.php.
• Added special handling for wp-config.php permission checks.
• Added support for detecting wp-config.php in the WordPress root or parent directory.
• Added High Risk status for wp-config.php when permissions are not set to 0644.
• Added High Risk status for unsafe writable files.
• Added Needs Attention status for folders that are not using recommended permissions.
• Added sorting to show High Risk items first, then Needs Attention, then Good.
• Improved Plugin Refresher table styling and layout.
• Improved Plugin Refresher helper text to better explain its infection-cleanup purpose.
• Improved bulk refresh messaging and completion behavior.
• Improved button hover styling so text and icons remain readable.
• Improved Theme Refresher table styling and layout to match Plugin Refresher.
• Improved Watch Dog baseline exclusion handling.
• Improved dashboard badge icon contrast.
• Improved Tools page card layout for a cleaner six-tool grid.
• Improved Plugin Check compatibility by adding missing translator comments.
• Improved Plugin Check compatibility by escaping settings page output.
• Improved Plugin Check compatibility by sanitizing request values.
• Improved Plugin Check compatibility by cleaning nonce handling warnings.
• Improved Plugin Check compatibility by cleaning prefix and naming warnings.
• Removed unnecessary summary stat cards from the Plugin Refresher page.
• Removed plugin folder slugs from the Plugin Refresher table for a cleaner interface.
• Removed Recommended Baseline card from Permissions Check.
• Removed bottom “No obvious world-writable wp-content items found” card from Permissions Check.
• Excluded Support Plugin - WP Fix It from the manual fresh install list.
• Excluded Guard Dog Security & Site Lock from the Plugin Refresher table.
• Changed inactive status icons from a dash to an X.
• Changed Permissions Checker text to Permissions Check.
• Changed Blacklist Checker text to Blacklist Check.
• Changed SSL Checker text to SSL Information.
• Reordered navigation so Scanner appears after Tools in both the top menu and WordPress admin side menu.
• Reordered Tools menu items so File Finder & Remover appears after Theme Refresher.
• Added File Finder & Remover card ordering improvements on the main Tools page.
• Fixed scanner success messages so they only display on the Scanner page.
• Fixed Watch Dog handling for wp-config.php review actions.
• Fixed wp-config.php exclusion saving and detection behavior.
• Fixed Site Lock menu icon hover color behavior.
• Fixed Theme Refresher fatal error caused by loading WordPress theme install functions more than once.
• Fixed visible translator comment text appearing on the dashboard.
• Fixed mixed line ending warnings across plugin files.
• Improved PHPCS compliance across refreshed plugin files.

7.0

• Added Watch Dog File Change Monitor.
• Added trusted file baseline creation and rebuild workflow.
• Added file change scanning for new, modified, and deleted files.
• Added scheduled Watch Dog file change scans.
• Added branded email alerts when file changes are detected.
• Added Watch Dog detected changes review table with view, download, approve, delete, and bulk actions.
• Added file details modal with readable size and modified date values.
• Added expandable file paths for long detected file paths.
• Added baseline exclusions for folders, individual files, wildcards, and server paths.
• Added protected Watch Dog baseline storage under wp-content/uploads/guard-dog/watch-dog/.
• Added Site Lock compatibility for Watch Dog storage while Site Lock is enabled.
• Added automatic internal exclusions for Watch Dog storage, report helpers, and error_log files.
• Added AJAX actions and loading overlays for baseline creation, baseline deletion, baseline rebuilds, and change scans.
• Added scan completion scrolling and success confirmation messages.
• Added Watch Dog Core Check.
• Added WordPress core file verification against the official WordPress.org checksum API.
• Added detection for modified, missing, unreadable, and unexpected WordPress core files.
• Added Core Check review actions to view, download, delete, and ignore reported files.
• Added scheduled Core Check scans.
• Added branded Core Check email alerts when core issues are found.
• Added dedicated Core Check settings for scan frequency, email alerts, and recipient.
• Updated Watch Dog navigation with File Change Monitor and Core Check tools.
• Improved Watch Dog styling, buttons, cards, status badges, modals, and admin workflow.
• Improved AJAX navigation and pagination handling.
• Improved compatibility with Plugin Check security and coding standard recommendations.

6.8

• Now compatible with hosting environments that auto lock WordPress core files.
• Improved site lock conditions to isolate certain folders and files.

6.7

• Removed Site Lock status in admin bar on site frontend.
• Added bulk database actions to infection scanner.
• Added select file actions to file remover tool.

6.6

• Fixed auto lock/unlock with MainWP.

6.5

• Made plugin code run only in admin area where needed.

6.4

• Fixed styling issue on scanner page.

6.3

• Added a database infection scanner to find harmful data.
• Added a setting to disable the admin bar Site Lock status display.

6.2

• Corrected typo in plugin description.

6.1

• Added AJAX loading content notice.

6.0

• Changed user interface to AJAX for faster navigation on Guard Dog pages.
• Added SSL checker tool to get details about the site SSL certificate.
• Improved infection scanner and added saved previous scan view.
• Made all tables responsive on all screen sizes.
• Improved blacklist checker tool.

5.6

• Added scheduled infection scans emailed directly to designated email addresses.

5.5

• Added additional lock exceptions for folders that need write permissions.

5.4

• Improved API REST endpoint call for cache bypass.

5.3

• Fixed permissions issue with Site Lock and MainWP.

5.2

• Added integration with MainWP to manage Site Lock during remote updates.

5.1

• Added a plugin refresher to reinstall fresh plugins when the current version is corrupted.

5.0

• Added an all-new Tools section to expand WordPress site auditing capabilities.
• Introduced the Find & Remove Files tool for locating, filtering, and deleting unwanted or suspicious files.
• Added a built-in Blacklist Checker to scan URLs, domains, and site status against major reputation lists.
• Added internal optimizations for future feature expansion.

4.9.2

• Can now exclude single plugins from Site Lock.

4.9.1

• Added new infection patterns to reduce false positives.

4.9

• Added new infection patterns to find bad files.

4.8

• Added new infection patterns to find bad files.

4.7

• Improved scanner performance.

4.6

• Added new infection patterns to find bad files.

4.5

• Temporarily removed MainWP integration to correct timeout issues during updates.

4.4

• Added new infection patterns to find bad files.

4.3

• Set up MainWP bridge for unlock/relock when running updates.

4.2

• Minor style changes.

4.1

• Added Site Lock Auto Enable.
• Added automated security reports.

4.0

• Rebranded plugin as a full security suite.

3.7

• Updated infection scanner patterns.

3.6

• Added infection scanner for site files.

3.5

• Fixed bulk delete action.
• Updated button styling.

3.4.4

• Fixed report fatal error.

3.4.3

• Fixed report hyperlinks.

3.4.2

• Fixed font styling on report download.

3.4.1

• Fixed typo.

3.4

• Added ability to download folder audit and security report.

3.3

• Added per-folder lock exclusion.
• Added new UI on main menu.

3.2

• Added locked item count to dashboard display.

3.1

• Fixed Site Health issue when Site Lock is on.

3.0

• Added user security settings to lock down account attacks.

2.9.4

• Added Site Lock under Tools menu.
• Added area for new settings tab.
• Added dropdown to security tab.
• Added style changes.

2.9.3

• Corrected bulk delete actions.

2.9.2

• Enhanced Site Lock conditioning.

2.9.1

• Fixed conflict with WP Rollback.

2.9

• Added view file action buttons.

2.8

• UI improvements.

2.7

• Fixed security header defaults.

2.6

• Fixed bulk ignore and delete functions.

2.5

• Added security area to lock folders and files and set security headers.

2.0

• New UI.

1.3.1

• Improved plugin header and descriptions.
• Added Author URI and GPL license URI.
• Enhanced escaping for better security compliance.

1.3.0

• Added auditing of wp-content and WordPress root folder.
• Improved error handling for unreadable directories.

1.2.0

• Added uploads and themes auditing.
• Improved plugin rows to match the Plugins screen exactly.

1.0.0

• Initial release. Added plugin folder auditing.