Latest Wordfence download (Premium), online updates, powerful security firewall plugin

Security Firewall Plugin Wordfence Download(Premium) GPL License, can be updated online .Wordfence is the best Wordpress security (Security) plugin, powerful and easy to set up the effect is obvious. The main features are blocking/restricting malicious crawlers and robots, powerful firewall, blocking specific regions/devices/IP access, 2FA installation login, regular automatic scanning, access to traffic monitoring and so on. It can also scan and compare theme and plug-in code, monitor code operation and find abnormal code in time.
Comstar (Chinese company)
Professional WordPress Website Builder

WordPress is a very well-known open-source website builder, up to 40% websites worldwide use WP to buildThis has led to a lot of unscrupulous people targeting WordPress in an attempt to sabotage or hack it.

Every day there are countless programs automatically scanning the global WordPress website, some are sending spam, some are implanting Trojan horses to do bad things, some are stealing quality articles and so on. Firewall plug-ins must be installed, in addition to security can also intercept some unfriendly robot program greatly reduces the burden on the server as well as to protect the content of the article is not stolen.

Wordfence official website data ↓

image 8

 

Actually the most powerful Wordpress security plugin is the paid version of Sucuri with CDN level firewall. It doesn't have a GPL version though, the original version is expensive and it slows down loading. iThemes Security and All In One WP Security are also good, but not as powerful and comprehensive as Wordfence.

Wordfence is one of the best security plugins for the public, with the best price/performance ratio, the most comprehensive features and the best protection. It can limit the number of login attempts, block malicious bot crawlers, block fixed IP/region access, block malicious traffic, enable 2FA login authentication, etc., with max security!

The image below shows the notification email sent to the administrator after the website was attacked by SQL injection, which was detected and successfully blocked by Wordfence.

Pasted 90

 Automatically block malicious crawlers.

Pasted 109

 

WORDPRESS firewall
Web Application Firewall identifies and blocks malicious traffic. Built and maintained by a 100% large team specializing in WordPress security.
[Premium] Real-time update of firewall rules and malware signatures via Threat Defense Feed (30-day delay in free version).
[Premium] Real-time IP blocking lists block all requests from the most malicious IPs, protecting your site while reducing the load.
Protect your site at the endpoint with deep integration with WordPress. Unlike cloud alternatives, it doesn't break encryption, can't be bypassed, and doesn't leak data.
The integrated malware scanning program blocks requests that contain malicious code or content.
Prevent brute force attacks by limiting login attempts.

WORDPRESS Security Scanner
Malware scanner checks core files, themes and plugins for malware, bad URLs, backdoors, SEO spam, malicious redirects and code injections.
Malware signatures are updated in real time via the Threat Defense Feed.
Compare your core files, themes and plugins with the content in the WordPress.org repository, checking their integrity and reporting any changes to you.
Repair changed files by overwriting them with the original original version. Delete any files that are not part of the Wordfence interface.
Checks your site for known security vulnerabilities and alerts you to any issues. Also alerts you to potential security issues when plugins are disabled or abandoned.
Check your content security by scanning for dangerous URLs and suspicious content in file content, posts and comments.
Check if your website or IP has been blacklisted due to malicious activity, spam generation or other security issues.

Login Security
Two-factor authentication (2FA), one of the most secure forms of remote system authentication, is available through any TOTP-based authenticator application or service.
The login page CAPTCHA prevents the robot from logging in.
Disable or add 2FA to XML-RPC.
Block administrator logins with known compromised passwords.

WORDFENCE Center
Wordfence Central is a powerful and effective way to manage security at multiple sites in one place.
Efficiently assess the security status of all your websites in one view. View detailed security findings without leaving Wordfence Central.
Powerful templates make configuring Wordfence a breeze.
Highly configurable alerts can be delivered via email, SMS or Slack. Improve signal-to-noise ratio by utilizing severity level options and daily summary options.
Track and alert on critical security events, including administrator logins, compromised password usage, and spikes in attack activity.
Free for unlimited sites.

Security Tools
Use Live Traffic to monitor visits and hacking attempts not shown in other analytics packages in real time; including the source, their IP address, time of day, and time spent on your site.
Block attackers by IP or build advanced rules based on IP ranges, hostnames, user agents, and referrers.
Wordfence Premium offers country/region blocking.

image 40

 

Note: In the dashboard and other places will show similar to the following picture, suggesting that the current version is free version, advanced features are not available. Just ignore it, all the advanced features have no effect on normal use. If you care, please do not buy! There is a user who intentionally picks a fight with the display of the following picture, and wants us to deal with it. Explained for a long time the other party still do not understand, directly refunded black.

image 39

this isGPL version of the plug-inI don't need to care about this tip, so this place shows this, the functions are used normally. That user should be the plug-in resale or used in other people's websites, take the crack version as the genuine publicity, his customers find him trouble, he came to me here to find fault. To be 100% perfect, please go to wordfence official website to buy!official versionThe

 

What is GPL Plugin

This plugin is a GPL licensed product and is safe and legal. Click to learn whatGPL licenseClick to learnWordPress official website about the GPL. Simply put the plugin/theme source code open source sharing using the GPL agreement can be legally and freely changed, used, and distributed.

The company that owns the plugin/theme mentioned in the title of this item is not affiliated with us in any way, and the company has not licensed its products or brands to us. This product is a distribution of the plugin/theme mentioned in the title, created by a third party company/developer and redistributed by us under the terms of the General Public License (GPL).

We use the plugin/theme name for the sole purpose of identifying the plugin/theme on which this GPL merchandise is based, with the intention of helping users better understand the functionality and possible application scenarios of this product of ours, and in no way to impersonate or mislead. This merchandise is sold under and respects the terms of the GPL license agreement and ensures that users are aware that they are acquiring a distribution of the plugin/theme based on an open source license. They are allowed to view, modify and redistribute the software to promote its free use and development.

 

Plug-in Security

Purchased directly from foreign formal channels, do not modify the source code. All plug-ins we use to build their own sites, used in a number of sites, safe, stable and reliable.Worried about plugins being insecure? Check out theIs WordPress Cracked Plugins/Themes (Green, GPL, Nulled) Safe?The

  1. pass (a bill or inspection etc)Virustotal Antivirus Verification.;
  2. pass (a bill or inspection etc)WordfenceSource code review;
  3. pass (a bill or inspection etc)SucuriSecurity antivirus scanning.

Sucuri Scan Results

 

Wordfence update methodology/records

This plugin can be updated online in the backend, and when there is a new version, you can directly click to update the upgrade.

Click to view the update log of this plugin (Changelog)

 

Wordfence Download (Premium) Terms of Purchase

This site plug-in purchased from foreign sites, the purchase price is$4.99/eachIt is valid for 2 years. Foreign trade star uniform selling price of 19 yuan / a, valid for life, and spend a great deal of energy to produce the use of tutorials also provide manual Q&A service, absolutely value for money. Plug-ins are for learning and communication research use only, virtual products with reproducibility, once sold, no refund, please move on!terms of serviceThe

Foreign trade star for the purchase of users to provide after-sales service, plug-in use of the process of any questions please leave a message in the comments below, there are questions and answers.

 

How to install/enable Wordfence

Because it can be updated online, we have not uploaded the latest version of the installation package. Please disable and then enable the plugin after installing it, it will prompt to update the version. Configure the firewall after updating the plugin online.

prioruninstallationThe free version, if you use both the free version and the premium version will prompt the content of the image below. Directly upload the installation package to install and enable the plugin. See the tutorial below for setup tutorial and FAQ.

image 41

 

Installation method 1: Upload and install

Find and click "Plugin">"Install Plugin" in the left menu column of the website background, then click "Upload Plugin" in the upper left corner, upload the downloaded zip installation package and click "Install Now", after installation, click on the"Enable plug-ins"Complete the installation.

Upload Plugin

Installation method 2:FTP installation

Unzip the plugin zip and place the unzipped obtainedfile (paper)Upload to the plugins directory (xxx.com/wp-content/plugins).
Find and click "Plug-ins" > "Installed Plug-ins" in the left menu column of the website background, find the plug-in in the plug-in list, and click "Enable".

Enabling Plug-ins

 

It can be updated online, just update it directly in the background.

Pasted 160

 

Wordfence Enables, Configures Firewall

After installing the plugin, a prompt will appear at the top of the site as shown in the image below, which needs to be configured before the firewall can be enabled. Click the "Click here to configure" button.

Pasted 51

Installation method 1

The number 1 will automatically select the appropriate type according to the server situation, don't worry about it. Click on the number 2 in order to proceed to step 3.

Pasted 116

In general, the installation will be prompted successfully, clear the cache refresh to complete the firewall enabled. If the installation fails to prompt the following content, it is because the .user.ini file permissions are locked, resulting in the content can not be written.

Pasted 118

There are 2 ways to solve this problem, 1 is to manually edit the .user.ini file to add content, 2 is to use SSH to log in to lift the .user.ini file write restrictions (2 methods to choose 1 on the line, it is recommended that the player manually editing), and then go back to the background of the site according to Wordfence plug-in prompts to enable the firewall once again can be.

Manually edit .user.ini (testimonials):

Go to the root directory of the website via the admin panel or FTP, find and open the edit.user.ini filePasted 145. By default there is only one line as shown below.

Pasted 149

Copy the following 3 lines of code and putxxx.comChange the URL to the one in the yellow box on the top image of your .user.ini file, then paste the 3 lines of code into .user.ini and tap Save Changes.

; Wordfence WAFauto_prepend_file = '/www/wwwroot/xxx.com/wordfence-waf.php'; END Wordfence WAF

Below is what it looks like after pasting 3 lines of code ↓.

Pasted 148

Go back to the plugin settings dashboard screen and refresh the page, at this pointFirewall is 100% enabled.The firewall protection is enabled. If it is not enabled after refreshing, it is due to cache, clear all cache and refresh.

Pasted 151

 

SSH lifts the .user.ini write restriction (Not recommended, reduced security):

To log in using SSH, type the following directly and press enter to lift the restriction.

Change xxx.com to your site's domain namePasted 121The

chattr -i /www/wwwroot/xxx.com/.user.ini

This is what it looks like after pastingPasted 128

This is what it looks like when you press enterPasted 142

Finally go to the pagoda panel, go to the site root folder and find the .user.ini file Pasted 125Click on "Permissions." Pasted 124Check all the permissions. Check all the permissions and tap "OK".

Pasted 126

At this point then follow the above tutorial to re-enable the firewall will be prompted to install successfully ↓.

Pasted 144

Refreshing the site cache and refreshing the page again, the dashboard shows that the firewall is 100% enabled.

Pasted 150

Note: Be sure to go back to the pagoda panel, according to the following chart to change the .user.ini file permissions back to 644, sometimes the site may not be successful in modifying, ignore.

Pasted 127

 

Installation method 2(Not recommended, reduced security)

Note: This method is mainly suitable for shared (hosted) servers or VPS servers with only one website. If you have more than one website on your VPS server, you need to disable the "Anti-Cross-Site Attack" feature on other websites (which will reduce the security of your website), or else the other websites will not be able to be opened. It is recommended to use method 1 to install.

Pasted 117

Pasted 62

If it's a shared (hosted) server, it should be automatically activated after following the above diagram. If it's a VPS Nginx will prompt to install the auto_prepend_file = '/www/wwwroot/xxx.com/wordfence-waf.php'

Pasted 63

Using the pagoda panel as an example, inside PHP Admin > "Configuration Files", found around line 698 or so"auto_prepend_file ="This content, complemented later by the code for the interface prompts'/www/wwwroot/xxx.com/wordfence-waf.php' (This code is just an example don't copy and paste it directly!) ), then refresh the pagoda panel memory, go back to the backend of the site and refresh the page cache, the advanced firewall is enabled (shows 100%).

Pasted 57

 

Enable 2FA Secure Login Authentication

2FA is a two-factor authentication, you need to enter the verification code when logging in (no need to go over the wall), the function is similar to the bank U-shield or electronic password device. It is recommended to enable 2FA secure login authentication to greatly improve security.

Click on "Login Security" in Wordfence on the left side of the backend, then click on "Settings" at the top. Here you can set what roles can be enabled 2FA secure login authentication, you can choose whether to enable the login authentication is mandatory or free to open (Optional). Generally, only your company's back-office administrators and the like can enable secure login, and it is not recommended to enable it for customers and the like.

Pasted 44

Check the box below and click "SAVE" to save. In this way, you need to verify the new device for the first time, and then you don't need to verify the new device for the next 30 days.

Pasted 45 Pasted 46

 

Click on the top "Two-Factor Authentication"Enter the interface of the binding authenticator. The phone first go to Google Paly or Apple Store to download Google Authenticator software (below), if you can not open the Google Store click this linkDownload Android APK InstallerThe

Pasted 47

Back to Wordfence's "Two-Factor Authentication"interface (the picture below). Open the newly installed Google Authenticator software, click the colorful round + sign at the bottom right corner of the software, select "Scan QR Code", scan the QR code in the Wordfence interface to complete the website binding. At this time, Google Authenticator will display a line of information: Wordfence(xxx.com), (you may need to click "Click to reveal PIN") will display a 6-digit verification code, enter the red box in the figure below "ACTIVE! ACTIVE" in the red box below.

Pasted 59

You will be prompted to download the recovery key, click on it to complete the binding. The recovery key is used as a backup plan to log in to the website without the verification code, so keep it in a safe place.

Pasted 49

The next time you log in to the backend, you will be prompted to enter the 2FA Code, open the phone authenticator software, enter the 6-digit number inside the software and click "Log In" to log in. Tick "Remember for 30 days", you don't need to input the code when you log in the same device within 30 days.

Pasted 50

 

Wordfence setup, use tutorial

Click here to see how to set upWordfence setup tutorialThe

If the scan prompts the content shown below, click Expand Details.

Pasted 244

The red code in the picture below does not exist in the official source file, so it suggests that it is poisonous. That's the code to remove license key verification, not a virus, just ignore it. If you are not sure, you can copy the code and put it into the freeKimi AI ToolsAsk if it's toxic.

Pasted 245

Pasted 246

 

Frequently Asked Questions & Solutions

Scanning Failure

Many times the scan fails with the following text error because the server is stuck and has insufficient resources to support the scan. Just solve the server problem and continue scanning.

Update 2024.08.30: Today's plugin update version improves scanning performance and reduces the burden on the 30% server, dependable.

"There was an error connecting to the Wordfence scanning servers: cURL error 28: Resolving timed out after 10001 milliseconds"

Frequently Asked Questions 1: If the scanning process is automatically paused and prompted with the following message, it is usually because the server is busy and the scanning timeout.

Pasted 37

Pasted 208

Solution:
1- Change max_execution_time to 1000 or more in PHP Settings > Configuration Modifications in the Pagoda panel;

Pasted 85

2- Add the following code to wp-config.php in the root directory of your website and save the file.

define('WORDFENCE_SCAN_FAILURE_THRESHOLD', 600);

Pasted 60

3- In Wordfence Plugin > Scanning > Scanning Options and Schedules (right of center).Select "High Sensitivity" for scanning level.Find the "Performance Options" setting and change the Maximum Execution Time to 25. Find the "Performance Options" setting and change the Maximum Execution Time to 25. If the server configuration is very low and laggy, then check "Use low resource scanning", otherwise don't check it.

Pasted 61

After the above 3 steps, refresh the page and rescan, it should be back to normal. If the scan still fails, it should be the server card, the configuration is lower than 1H2G or too many pages or so on. Modify the "Scanning Options and Plans", uncheck the following to reduce the scanning volume to try.

Pasted 209

Pasted 210

 

If the scanning process is paused automatically and the following message is displayed, the innodb_log_file_size is too small (default is 5M).

Pasted 137

Go to Pagoda Panel > "MySQL" > "Configuration Changes" > about line 51, change the value of innodb_log_file_size to 30M. save and restart the database. Refresh the page and rescan to restore normal.

Pasted 135

 

Unable to save files, products, keywords

If you encounter the inability to save articles, products, added keywords or some plugin settings, etc., it may be blocked by security plugins, turn on the learning mode to solve the problem. Click Wordfence > "Firewall". The red box in the following figure suggests "Blocking Complex Attacks" to prove that it is not in learning mode, click "Manage WAF".

Pasted 52

Select Learning Mode, check Auto Enable, and select an Auto Enable date. Tap "Save Changes" in the upper right corner.

Pasted 53    Pasted 54

Back at the firewall, it says, "Currently in learning mode."

Pasted 55

 

The scanning result suggests that there is a problem

After scanning, you may find a lot of problems marked in yellow (below), which means that the code of some files of the plugin is different from the source file, but it is within the safe range, in most cases you can just click "Always ignoring", it is recommended to check the code discrepancy and act accordingly.

This is usually caused by updating the plugin/theme, and the code of the latest version is a bit different from the code of the previous version. Another reason is the use of GPL or cracked version of the plugin, the source file is written into the license key activation or add some code to block the authentication step or so on.

Click "View Differences"You can view the code with differences.

Pasted 39

For example, the following figure is a comparison of file differences, the left is the source file, the right is the new file, the red background part indicates that the new file than the source file has some less code. From the figure below you can see that the new file has a few lines less CSS code (9-23 lines). css code does not affect the security and so on, you can click "Always ignoring".

Pasted 40

Pasted 41

The orange background part of the following figure indicates that the new GPL plugin file has some differences with the source file code, the new file adds "PAID CURRENT" to bypass the plugin activation verification, the file is safe, you can click on "Always ignoring".

The green background part of the picture below indicates that the new file is newer than the source file, the code means that the secret key will expire after 365 days, also to bypass the plugin activation verification, the file is safe, you can click on the "Always ignoring".

Pasted 56

If the problem is a red circle, there is a high probability that it is mounted and you need to delete/restore the file. The specific situation depends on which file is out of order and what code has been added. If it is readme and other files directly deleted, if it is index.php, login.php and other files are mounted directly download a brand new wordpress installer unzipped out of the corresponding files inside the paste to cover off the mounted files, while cleaning up all the cache.

 

Access page blocked

If the following picture appears, it is blocked by the firewall by mistake. You can directly check the box "I am certain this is a false positive", then click "Allowlist This Action", and finally refresh the page to return to normal.

Pasted 86

If the following situation occurs, directly refresh the page will usually return to normal. If you can't refresh the page, you can enter the mailbox bound to your website according to the steps in the following figure, and click Send Unblocked Mail. Check the mail and click the link inside to unblock the IP.If your website sends abnormal mail, you will not receive the mailbox, disable the plugin through FTP or Bao Panel, and then enable it after logging into the background.

It is recommended to add frequently used IP addresses to the wordfence firewall whitelist to avoid being blocked by mistake.

Pasted 194

 

Scanning timeout, frequent alerts that plug-ins need to be updated

General server configuration card or lagging will lead to insufficient resources scanning suspension or failure, to solve the server lag problem is the key, while optimizing the scanning task to reduce the pressure.

Click on "Scan" ↓

image 9

Click on Scanning Options and Plans ↓

image 10

Select Standard Scan ↓

image 11

The following 2 ↓ do not check, scanning pressure is small, plug-in new version of the code is not the same will not be prompted. Do not just install plug-ins do not know the source!

image 12

Do not check ↓, there are plugins / themes to update Wordfence will not be prompted (background will still be prompted). There are new plug-ins to update in time!

image 13

Check ↓ for much better security.

image 14

Tick ↓ to reduce server pressure.

image 15

Modify parameters↓

Pasted 165

Tap the upper right corner to save changes.

image 16

 

Prompt "The last rule update for Wordfence Web Application Firewall was unsuccessful..."

If you are prompted with the following message: "The last rule update for Wordfence Web Application Firewall was unsuccessful...", click "Manually Update". then click "Manually Update".

Pasted 203

Click on "Manual Refresh Rules" ↓.

Pasted 204

Prompts for a successful update ↓.

Pasted 205

If you want to solve the problem once and for all, watch this.Solution TutorialJust do what customer service says.

 

Google indexes useless pages with the /?wordfence prefix

Generates many useless pages with URLs prefixed with /?wordfence in the image below and is indexed by Google Google Search Console.

image 31

Solution: Add a line to the robots.txt file:Disallow: /*/?wordfence* The crawler can then be prohibited from crawling the appropriate page.

image 38

 

Website hacking case sharing

Case 1:
A visitor has just purchased Wordfence plugin here at FT Star, and has been asking me whether it is safe, whether there is a backdoor and so on, and his intuition tells me that he has a story. Chat open found that his site before being paralyzed by the black, want to buy our Wordfence plugin to save. If he had purchased this plugin at the beginning, the probability of not being hacked would not have occurred.

Pasted 183

Pasted 184

 

Case 2:
There was a case of a client's website being hung with Malicious Redirects, just for your reference. A 2C client's website was maligned, and when the background login page and all the pages of the frontend were opened, it would automatically jump to the website shown below. It was not possible to log in to the background, the page could not be opened, and the other two websites on the same server were also implicated.

Pasted 42

The background login is controlled by the wp-login.php file, the first time I couldn't log in, I went to the root directory of the website to check the source code of this file, and found that more than 10 lines of malicious code had been added. I copied wp-login.php from the healthy site and overwrote it, and the login page was back to normal.

The home page is controlled by wp-index.php file, go to the root directory of the website to check the source code of this file and found that it is also hooked, copy wp-index.php file from the health site and cover it, and the page opens normally and no longer jumps.

Scanning the entire site with the WordFence plugin results:
Tip wp-load.php has a virus, compared to the source file found that the 107th line has been added to the malicious code, delete it.
Tip wp-content/plugins/wordfence/readme.md has a virus, check the latest plug-in installation package source files found that there is no such file, and readme.md file is generally a descriptive file does not have the function can be deleted, so directly delete this file.

After dealing with the threat and then scanning the whole site with Wordfence, it suggests that there is a virus in the Wp Rocket cache file, which is supposed to be a toxic file that is cached when the cache is regularly updated. Directly into the pagoda panel to delete the entire cache folder, let the cache plugin re-cache.

Scan the whole site again with WordFence, it prompts safe and the threat is lifted. Immediately change the background login address, login username and password.

Review of this incident should be one of the customer's website login account and password is too simple to be cracked. The customer was looking for someone else to build the WP backend and the front-end page by himself. Others casually set up a 4-digit administrator login name, the password is also very simple, and did not install firewall plug-ins, security is very low.

You can't blame the third party for this, he's only responsible for installing the backend, naturally he won't take the initiative to install a firewall or anything like that. Just get a simple administrator account just to allow customers to log in to the background, it is reasonable to say that the customer should create a new account to delete the old account. Customers can not handle their own front-end to find us to build, we do not want to meddle in other content.

After the site was hacked, we help customers clean up the virus for free, set up a new account, install wordfence firewall plug-ins. It is also considered to eat a little long a wise, in the future encounter this kind of thing first suggested that the customer to improve the security, although the security problem is not our fault, but still want us to deal with, simply get a good start.

Do not recommend that white people build their own website for one of the reasons here, the use of WP to build a website is very simple, but to do all aspects of the need for extensive experience. Security aspects of the installation and set up a good Wordfence plug-in is basically OK.

Many scanners on the Internet automatically scan websites for vulnerabilities, enumerate the login background and so on, and then hang mining programs or Trojan horses to jump to gambling/virus sites. The background login address must be modified not to use the default address, the user name and password as much as possible to set a complex point. Installation of WordFence security plug-ins can greatly enhance site security, but also increase the 2FA security login verification.

WordPress Many plug-ins are often exposed to major security holes, even the well-known Elementor plug-in has been exposed several times to serious security holes, the official emergency release of a new version of the fix. Try to install plug-ins/themes with higher visibility, the code is generally more standardized, and the team behind it is reliable. Plugins and themes must be updated to the latest version in time.

If using cracked/GPL plugins and themes, be sure to antivirus first and buy them from reliable sources. For more details, check out theAre cracked plugins/themes (GPL versions) safe? What are the disadvantages? Where to buy it reliably?The

End

Related plug-ins

Scroll to Top
Website Solutions & Quotes

Swipe to add Business WeChat

+133 3643 8551(V synchronized)