VMP Fence Security
| 开发者 | tanveer269 |
|---|---|
| 更新时间 | 2025年10月30日 18:01 |
| PHP版本: | 7.4 及以上 |
| WordPress版本: | 6.8 |
| 版权: | GPLv2 or later |
| 版权网址: | 版权信息 |
详情介绍:
- Server State Scanner monitors server configuration and security settings
- File Changes Scanner detects unauthorized modifications to WordPress core, themes, and plugins
- User Security Scanner identifies suspicious user accounts, risky usernames, and admin enumeration
- Content Safety Scanner analyzes posts and comments for malicious content and URLs
- Public Files Scanner checks for exposed configuration files and sensitive data
- User Audit Scanner monitors user activities and permission changes
- Vulnerability Scanner identifies known security vulnerabilities in installed plugins and themes
- Malware Scanner detects malicious code, backdoors, and infected files
- Domain Blocklist Scanner checks against known malicious domains and reputation databases
- Spamvertising Scanner identifies spam content injection and SEO spam attacks
- IP Spam Scanner monitors for suspicious IP addresses and bot activity
- Advanced malware signatures with pattern-based detection for backdoors and trojans
- File integrity monitoring compares files against WordPress.org repository versions
- Binary file scanning detects malicious code in images and executables
- WordPress core verification ensures core files haven't been tampered with
- Plugin and theme scanning identifies modified or infected extensions
- Unknown file detection flags suspicious files that don't belong to WordPress
- Plugin vulnerability scanning checks for known security issues in installed plugins
- Theme vulnerability detection identifies security flaws in active themes
- WordPress core vulnerabilities monitors for outdated WordPress installations
- Google Safe Browsing integration checks URLs against Google's malware database
- Suspicious admin detection identifies potentially compromised administrator accounts
- Password security analysis detects weak or compromised passwords
- Multiple scan types: Limited (quick), Standard (balanced), High Sensitivity (comprehensive), Custom (configurable)
- Scheduled scanning with flexible timing options (hourly, daily, weekly)
- Scan monitoring system with automatic recovery from interrupted scans
- Performance optimization with memory management and resource controls
- File exclusion patterns to customize scanning scope and reduce false positives
- Progress tracking with real-time status updates and detailed logging
- Dashboard overview showing security status and recent scan results
- Detailed scan results with issue classification and remediation guidance
- Audit logging tracks all security events and user activities
- Scan result reporting with detailed security issue analysis and remediation guidance
- Activity logs accessible via "Show Log" and "See Full Log" interface buttons
- Issue management with options to ignore detected threats or repair infected files
- API integrations including Google Safe Browsing for URL reputation checking
- Background processing prevents timeouts during large site scans
- Resource management with configurable memory limits and execution timeouts
- IPv4/IPv6 support with option to force IPv4-only scanning
- Multi-site compatibility works with WordPress multisite installations
- Flexible configuration with comprehensive options and settings management
安装:
- Install VMP Fence through the WordPress plugin directory or upload the ZIP file
- Activate VMP Fence through the 'Plugins' menu in WordPress
- Navigate to VMP Fence > Dashboard to access the security interface
- Configure your scan preferences using the scan configuration options
- Run your first security scan from VMP Fence > Scan
- Review and address any security issues found in the scan results
- Set up scheduled scans for ongoing automated protection
屏幕截图:
常见问题:
What types of security threats does VMP Fence detect?
VMP Fence detects a comprehensive range of security threats including malware, backdoors, trojans, suspicious file changes, plugin/theme vulnerabilities, compromised user accounts, spam content injection, malicious URLs, exposed configuration files, and various forms of code injection attacks.
How does the multi-scanner architecture work?
VMP Fence uses 11 specialized scanners that each focus on specific security aspects. The Server State Scanner checks configuration, File Changes Scanner monitors file integrity, Malware Scanner detects malicious code, Vulnerability Scanner identifies security flaws, and so on. This modular approach provides comprehensive coverage while maintaining performance.
What scan types are available?
VMP Fence offers four scan types:
- Limited: Quick scan focusing on critical security checks and core files
- Standard: Balanced scan covering most security aspects with good performance
- High Sensitivity: Deep comprehensive scan with maximum threat detection
- Custom: Fully configurable scan where you can enable/disable individual scanner modules
Can VMP Fence repair infected files automatically?
VMP Fence focuses on detection and detailed reporting of security issues. While it identifies infected files and provides comprehensive analysis, VMP Fence offers repair options that you can execute manually for infected files. The plugin provides safe file restoration capabilities, but repairs require user confirmation to ensure complete and safe remediation.
How does the Google Safe Browsing integration work?
VMP Fence integrates with Google's Safe Browsing API to check URLs found in your content, posts, and comments against Google's database of known malicious websites, phishing sites, and malware distribution points. This helps identify compromised content early.
Does VMP Fence affect my website's performance?
No. VMP Fence is designed for optimal performance with background scanning, intelligent resource management, and optimized algorithms. Scans run independently without affecting your website's front-end performance or user experience.
What file types can VMP Fence scan?
VMP Fence can scan PHP files, JavaScript, CSS, WordPress core files, theme files, plugin files, configuration files, and optionally binary files including images and executables for embedded threats.
How does scheduled scanning work?
VMP Fence includes a flexible scheduling system that can run automatic scans at specified intervals (daily, twice daily, weekdays, weekends, or custom schedules). The scan monitor system ensures scans complete successfully and can automatically recover from interrupted scans.
Can I exclude certain files or directories from scanning?
Yes. VMP Fence provides flexible exclusion options allowing you to exclude specific files, directories, or file patterns from scanning. This is useful for large media directories, custom code, or known safe files that might trigger false positives.
What happens when VMP Fence finds a security issue?
When security issues are detected, VMP Fence provides detailed reports with issue classification, severity ratings, affected files, and remediation recommendations. You can choose to ignore false positives, repair infected files, or take manual action based on the findings.
Does VMP Fence work with multisite installations?
Yes. VMP Fence is fully compatible with WordPress multisite (network) installations and can scan all sites in your network while providing centralized management and reporting.
What notifications does VMP Fence provide?
VMP Fence provides comprehensive security reporting and activity logging for all scan results and security events. The plugin tracks scan completion, threat discoveries, and security activities through detailed logs accessible via the admin interface.
更新日志:
- Initial release of VMP Fence Security
- Implemented 11 specialized security scanner modules
- Added comprehensive malware detection with advanced pattern matching
- Integrated Google Safe Browsing API for URL reputation checking
- Created multi-scan type support (Limited, Standard, High Sensitivity, Custom)
- Implemented file integrity monitoring against WordPress.org repository
- Added vulnerability scanning for plugins, themes, and WordPress core
- Created user security analysis and suspicious admin detection
- Implemented content safety scanning for posts and comments
- Added public files scanner for exposed configuration detection
- Created scheduled scanning with automatic recovery system
- Implemented performance optimization and resource management
- Added comprehensive audit logging and security event tracking
- Created flexible file exclusion system for false positive management
- Added email notification system for security alerts and scan completion
- Implemented dashboard interface with detailed security reporting
- Created comprehensive configuration system with advanced options management