wordpress-security
Here are 166 public repositories matching this topic...
Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.
-
Updated
Mar 18, 2024 - Java
WPScan rewritten in Python + some WPSeku ideas
-
Updated
Jun 4, 2021 - Python
The vulnerable version of WordPress that is updated monthly.
-
Updated
Jan 14, 2025
Advanced web security scanner with 49 modules, evasion engine, and CVE database.
-
Updated
May 29, 2026 - Python
Professional Agent Skill for building, auditing, testing, and releasing modern WordPress plugins with Codex, Cursor, and Claude Code.
-
Updated
Jun 7, 2026 - JavaScript
Sudo for WordPress! 🥪 Risky actions — activating plugins, deleting users, changing key settings — are gated by a required reauthentication step, regardless of user role. Time-bounded sessions, 2FA support, rate limiting, and configurable policies for REST, WP-CLI, Cron, WPGraphQL, & XML-RPC. No role escalation, no new permissions — just a gate. ⛩️
-
Updated
Jun 17, 2026 - PHP
Useful plugin that will scan your theme templates for malicious injections. Automatically. Every day. For more blog security.
-
Updated
Apr 19, 2026 - PHP
A command line took to check the WPScan Vulnerability Database via API to identify the security issues of WordPress plugins installed.
-
Updated
Oct 22, 2023 - PHP
A wordpress security auditor! Audit your wordpress application for security issues with even 1 request.
-
Updated
Jan 13, 2026 - Python
WPAUDIT: Advanced WordPress security auditing suite & vulnerability scanner. Automates pentesting with Nmap, WPScan, Nuclei, SQLMap. Comprehensive reports. Ideal for ethical hackers & Kali Linux.
-
Updated
May 27, 2025 - Python
Apache configuration and useful functions for more secure and performant Wordpress sites.
-
Updated
Mar 11, 2025 - PHP
AI SKILL.md files
-
Updated
May 31, 2026
wordpress security best practice
-
Updated
Jun 5, 2024
fail2ban setup for centminmod.com LEMP stack with CSF Firewall
-
Updated
Apr 8, 2023 - Shell
Prevents users from being logged into the same WordPress site from multiple places.
-
Updated
Oct 25, 2017 - PHP
Advanced use of WPScan (WordPress Security Scanner) with other tools like nmap, nikto, owasp-zap, ids for ethnical Hackers
-
Updated
Aug 13, 2025
Require certain users to change their passwords on a regular basis.
-
Updated
Jun 1, 2023 - PHP
Simple Bash Script For Collecting Wordpress Username
-
Updated
Feb 28, 2021 - Shell
DeConfigro is a tool that scans WordPress websites for the WordPress Setup Config Vulnerability. If exposed, this page indicates an incomplete installation and can be exploited, posing a security risk.
-
Updated
Mar 9, 2026 - Shell
Improve this page
Add a description, image, and links to the wordpress-security topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the wordpress-security topic, visit your repo's landing page and select "manage topics."