1. Board4all.biz is a forum where members can share their knowledge and much more - why not become part of our wonderful community that's been around for over 16 years. If you have problems registering you can send an email to admin@board4all.biz and we will look into it.

Recommend .php, .js files malware scanner?

Discussion in 'General Chat' started by AppleBag, Feb 7, 2018.

  1. Ap

    AppleBag Registered User

    Joined:
    Jan 9, 2018
    Messages:
    1
    Likes Received:
    0
    Hi all,

    So I downloaded a WP theme with MANY files and in the past I've seen sites add malicious code to themes. Rather than manually look through each individual PHP or js file which would take forever, is there a program that I could use to scan all the files for me and report any it finds, to save me a lot of time?

    thanks in advance
     
  2. magallanes

    magallanes Registered User

    Joined:
    Apr 1, 2008
    Messages:
    207
    Likes Received:
    1,021
    Find for "eval(". Most hackers hide/obfuscate their code by using eval.
     
  3. Warax

    Warax Honorary Member Honorary Member V.I.P DEV Guild

    Joined:
    Jan 16, 2011
    Messages:
    4,209
    Likes Received:
    3,443
    Here are some tools:

    Code:
    https://asphaltthemes.com/wordpress-online-vulnerability-scanners/
    I advise if you do a wordpress site for a client, you make the client buy the original them this way you get latest updates, complete clean files and the theme developer get his money too.
     
  4. by

    byqmcywc Registered User

    Joined:
    Thursday
    Messages:
    11
    Likes Received:
    3
    Code auditing is a professional task. I would suggest getting a free WAF(Web Application Firewall) to do this for yourself, e.g. https://www.modsecurity.org/
     

Share This Page