Estava caçando algumas vulnerabilidades para wordpress com o objetivo de montar um laboratório. Eis que encontrei o inverso, um novo plugin focado em segurança e denominado 6scan.
A revisão e os comentários quanto a ele são muito bons, mais de 3100 até agora, levando assim 5 estrelinhas da galera que trabalha e desenvolve para wordpress.
O plugin promete 6 funcionalidades. São elas:
6Scan’s Patrol™ scanner imitates the actions of a hacker trying to hack into your website: each page, form and script on your site is scoured for weak points that could potentially become security holes. Patrol™ utilizes a patent-pending combination of heuristic scanning with information gathered by 6Scan’s security response team and the latest online sources. Patrol™ works seamlessly in the background; it will never harm your site or interfere with legitimate traffic
As soon as the Patrol™ scanner detects a vulnerability, it is communicated to the Bodyguard™ agent, which acts to quickly patch it up. A hacker attempting to exploit the vulnerability won’t even know that Bodyguard™ is there – he’ll be left to wonder why none of his attacks are working.
6Scan’s protection is prepackaged for common web frameworks, allowing you to quickly and easily install it using the plugin installation procedure you are already familiar with. If your site is hosted with one of our select hosting partners, 6Scan’s protection is already preinstalled on your site, and only needs to be activated.
6Scan’s research team of ex-military hackers works around the clock to find undocumented vulnerabilities. We monitor new as well as old versions of common web frameworks and plugins, looking for vulnerabilities. The moment a vulnerability is discovered, it is transferred to our Patrol™ scanner, which acts to discover the sites vulnerable to it and patch them up immediately. While we work actively with the platform and plugin developers to release a patch for each problem, only 6Scan’s customers are protected immediately.
6Scan’s Patrol™ responds to new vulnerabilities discovered by our research team, as well as those learned from security response teams and directly from developers, by immediately finding sites that may be vulnerable and working with their Bodyguard™ to fix the problem. 6Scan’s unique cloud-scanning technology allows us to perform this process quickly – usually in under 15 seconds – for a virtually unlimited number of sites.
While 6Scan’s dashboard shows you vulnerabilities detected on your site and provides detailed explanations and patch instructions, this information is purely to satisfy your curiosity: from the moment you enable 6Scan’s protection, no further action is required to maintain a high level of security for your site.
Ele tem um problema: pediu um cartão de crédito internacional para ser ativado, já que a partir do dia 24 de janeiro será cobrada uma taxa de US$ 10.00 mensais para que você possa utilizá-lo.
Eu achei o valor bem baixo e acabei liberando a cobrança. A sua tela de status de segurança quanto ao wordpress é bem interessante. Vejam só:
Vamos aguardar os resultados deste carinha, mas vale a dica.