WPHardening is a security tool for WordPress. Different tools to hardening WordPress.
Usage
$ python wphardening.py -h
Options:
--version show program's version number and exit
-h, --help show this help message and exit
-v, --verbose Active verbose mode output results
--update Check for WPHardening latest stable version
Target:
This option must be specified to modify the package WordPress.
-d DIRECTORY, --dir=DIRECTORY
**REQUIRED** - Working Directory.
Hardening:
Different tools to hardening WordPress.
-c, --chmod Chmod 755 in directory and 644 in files.
-r, --remove Remove files and directory.
-b, --robots Create file robots.txt
-f, --fingerprinting
Deleted fingerprinting WordPress.
-t, --timthumb Find the library TimThumb.
--wp-config Wizard generated wp-config.php
--delete-version Deleted version WordPress.
--plugins Download Plugins Security.
--proxy=PROXY Use a HTTP proxy to connect to the target url for
--plugins and --wp-config.
--indexes It allows you to display the contents of directories.
Miscellaneous:
-o FILE, --output=FILE
Write log report to FILE.logExamples
Check a WordPress Project$ python wphardening.py -d /home/path/wordpress -v$ python wphardening.py -d /home/path/wordpress --chmod -v$ python wphardening.py -d /home/path/wordpress --remove -v$ python wphardening.py -d /home/path/wordpress --robots -v$ python wphardening.py -d /home/path/wordpress --fingerprinting -v$ python wphardening.py -d /home/path/wordpress --timthumb -v$ python wphardening.py -d /home/path/wordpress --indexes -v$ python wphardening.py -d /home/path/wordpress --plugins$ python wphardening.py -d /home/path/wordpress --wp-config$ python wphardening.py -d /home/path/wordpress --delete-version -v$ python wphardening.py --update$ python wphardening.py -d /home/user/wordpress -c -r -f -t --wp-config --delete-version --indexes --plugins -o /home/user/wphardening.log
