1. Important Notice: ALWAYS login to your account using Board4all.biz - we do not own or run any other websites so please make sure you are connected to our official domain, and that you see the secure connection padlock before entering your login details.

Recommend .php, .js files malware scanner?

Discussion in 'General Chat' started by AppleBag, Feb 7, 2018.

  1. Ap

    AppleBag Registered User

    Joined:
    Jan 9, 2018
    Messages:
    1
    Likes Received:
    0
    Hi all,

    So I downloaded a WP theme with MANY files and in the past I've seen sites add malicious code to themes. Rather than manually look through each individual PHP or js file which would take forever, is there a program that I could use to scan all the files for me and report any it finds, to save me a lot of time?

    thanks in advance
     
  2. magallanes

    magallanes Registered User

    Joined:
    Apr 1, 2008
    Messages:
    208
    Likes Received:
    1,029
    Find for "eval(". Most hackers hide/obfuscate their code by using eval.
     
  3. Warax

    Warax Honorary Member Honorary Member V.I.P DEV Guild

    Joined:
    Jan 16, 2011
    Messages:
    4,228
    Likes Received:
    3,467
    Here are some tools:

    Code:
    https://asphaltthemes.com/wordpress-online-vulnerability-scanners/
    I advise if you do a wordpress site for a client, you make the client buy the original them this way you get latest updates, complete clean files and the theme developer get his money too.
     
  4. by

    byqmcywc Registered User

    Joined:
    Feb 15, 2018
    Messages:
    11
    Likes Received:
    16
    Code auditing is a professional task. I would suggest getting a free WAF(Web Application Firewall) to do this for yourself, e.g. https://www.modsecurity.org/
     
  5. bo

    bobsadino Registered User

    Joined:
    Feb 19, 2018
    Messages:
    9
    Likes Received:
    4
    don't go to pirated website or wordpress theme

    use hitman pro and malwarebytes
     
    Last edited: Feb 21, 2018
  6. men240

    men240 is a Trusted Warez Postermen240 V.I.P. User V.I.P DEV Guild

    Joined:
    May 14, 2006
    Messages:
    10,219
    Likes Received:
    24,548
    I just stick to a few websites that I visit regularly, and also disable alot of settings in browse too.
     
  7. bestwail

    bestwail Registered User

    Joined:
    Nov 14, 2011
    Messages:
    89
    Likes Received:
    998
    Read this post:
    How to detect Malicious code in Free and nulled WordPress Themes and Plugins


    Code:
    https://www.wpstuffs.com/detect-malicious-code-wordpress-themes-plugins/
     
  8. trifid

    trifid Registered User

    Joined:
    Aug 13, 2017
    Messages:
    24
    Likes Received:
    67
    In general I have had a lot of success, using McAfee Enterprise (latest version + lastest paches). Along with TCPViewer from Sysinternals.
    You have to have to run the complete site and antivirus in a virtual host (think VMWARE).

    Mcafee will identify a lot of malicious code as it is generated while runing the site. As well as a lot of the standard malicioud code generating 'actions'.
    TPCViewer will allow you to see all outgoing connections from the virtual host to remote sites.
    At the end of the day your worpress site should not be calling out to other not local urls.

    You need to test every page, ever component.

    I have used this process to clean sites, that have been hacked and infected.
    So I can't certify that it will work on a corrupted theme.

    But hey its an option.