內容簡介
我們喜歡安全測試,我們也在使用 WPSCAN!但是,我們不喜歡人們濫用 WPSCAN 和其他自動化方法來嘗試通過已知的、經常很容易受到攻擊的漏洞來進入 WordPress 網站。N0WPScan 不是萬能的,但它可以阻止無技術的攻擊者、機器人和自動化攻擊,這些攻擊占所有 WordPress 違規的 90% 以上。其他 10% 可以通過良好的防火牆、IDS 和 NSM 服務來補足。此工具還可以防止大量的與 WordPress 相關的自動化測試,因此負載更低,網站更快。
[!] 只需保持插件、主題和 WordPress 核心框架更新,就可以防止大多數常見攻擊
好處:
* 禁止除管理員和編輯以外的其他人訪問管理頁面
* 禁用 WPScan,一個駭客攻擊 WordPress 常用的工具,同時阻止其他自動化 WP 掃描工具
* 阻止黑客掃描您的網站以查找管理員用戶、易受攻擊的主題、易受攻擊的插件和公開文件
* 減輕服務器負擔
* 防止訪問敏感文件
外掛標籤
開發者團隊
原文外掛簡介
We love security testing, we do it! We love WPSCAN, we use it! However we don’t love people abusing WPSCAN and other automated methods to try and gain access to WordPress sites through known and often easy vulnerabilities. N0WPScan is not a silver bullet, but it will stop unskilled attackers, bots and automated attacks which account for over 90% of all WordPress breaches. The other 10% can be offset with a good firewall, IDS and NSM services. Server load will also be lower and sites faster as this tool will prevent a lot of WordPress related automated testing.
[!] You can prevent most of the common attacks simply by keeping plugins, themes and the core WordPress framework updated
Benefits
* Disables access to admin for everyone except admins and editors
* Disables the use of WPScan, a tool commonly used by hackers to attack WordPress, also blocks other automated WP scanners
* Blocks hackers from scanning your website for admin users, vulnerable themes, vulnerable plugins and exposed files
* Reduces the load on your server
* Prevents access to sensitive files
