=== NinjaFirewall (WP+ Edition) ===
Contributors: nintechnet
Tags: security, firewall, malware, virus, protection, hack, antispam, scanner, hacked site, brute force, seguridad, seguranca, sicherheit, sicurezza, veiligheid, classicpress
Requires at least: 4.7
Tested up to: 5.9
Stable tag: 4.5.1
Requires PHP: 5.5
License: GPLv3 or later
License URI: http://www.gnu.org/licenses/gpl-3.0.html
A true Web Application Firewall to protect and secure WordPress.
== Description ==
= A true Web Application Firewall =
NinjaFirewall (WP+ Edition) is a true Web Application Firewall. Although it can be installed and configured just like a plugin, it is a stand-alone firewall that stands in front of WordPress.
It allows any blog administrator to benefit from very advanced and powerful security features that usually aren't available at the WordPress level, but only in security applications such as the Apache [ModSecurity](http://www.modsecurity.org/ "") module or the PHP [Suhosin](http://suhosin.org/ "") extension.
> NinjaFirewall requires at least PHP 5.6, MySQLi extension and is only compatible with Unix-like OS (Linux, BSD). It is **not compatible with Microsoft Windows**.
NinjaFirewall can hook, scan, sanitise or reject any HTTP/HTTPS request sent to a PHP script before it reaches WordPress or any of its plugins. All scripts located inside the blog installation directories and sub-directories will be protected, including those that aren't part of the WordPress package. Even encoded PHP scripts, hackers shell scripts and backdoors will be filtered by NinjaFirewall.
= Powerful filtering engine =
NinjaFirewall includes **the most powerful filtering engine available in a WordPress plugin**. Its most important feature is its ability to normalize and transform data from incoming HTTP requests which allows it to detect Web Application Firewall evasion techniques and obfuscation tactics used by hackers, as well as to support and decode a large set of encodings. See our blog for a full description: [An introduction to NinjaFirewall filtering engine](https://blog.nintechnet.com/introduction-to-ninjafirewall-filtering-engine/ "").
= Features =
* Full standalone web application firewall. Works before WordPress is loaded.
* Powerful filtering engine.
* Supports a large set of encodings.
* Detects and blocks obfuscated code and evasion techniques used to bypass Web Application Firewalls.
* Protects against remote file inclusion, local file inclusion, cross-site scripting, code execution, SQL injections, brute-force scanners, shell scripts, backdoors etc.
* Scans and sanitises GET/POST requests, HTTP/HTTPS traffic, cookies, server variables (`HTTP_USER_AGENT`, `HTTP_REFERER`, `PHP_SELF`, `PATH_TRANSLATED`, `PATH_INFO`) and raw POST data.
* Sanitises variables names and values.
* Privilege escalation protection.
* Advanced filtering options to block ASCII control characters, NULL bytes and PHP built-in wrappers.
* Decodes and scans Base64-encoded POST requests to detect backdoors and code injection attempts.
* Hooks and secures HTTP reponse headers to prevent XSS, phishing and clickjacking attempts (`X-Content-Type-Options`, `X-Frame-Options`, `X-XSS-Protection`, `Strict-Transport-Security`, `Content-Security-Policy`).
* Hooks and modifies cookies to set the `HttpOnly` flag.
* Blocks username enumeration scanning attempts through the author archives and the login page.
* Blocks/allows uploads, sanitises uploaded file names.
* Blocks suspicious bots and scanners.
* Hides PHP error and notice messages.
* Blocks direct access to PHP scripts located inside specific directories (e.g., `/wp-content/uploads/`).
* Protects WordPress XML-RPC API.
* Whitelist option for WordPress administrator(s), localhost and private IP address spaces.
* Configurable HTTP return code and message.
* Rules editor to enable/disable built-in security rules.
* Activity log and statistics.
* Debugging mode.
* And many more...
= Fastest and most efficient brute-force attack protection for WordPress =
By processing incoming HTTP requests before your blog and any of its plugins, NinjaFirewall is the only plugin for WordPress able to protect it against very large brute-force attacks, including distributed attacks coming from several thousands of different IPs.
See our benchmarks and stress-tests: [Brute-force attack detection plugins comparison](https://blog.nintechnet.com/wordpress-brute-force-attack-detection-plugins-comparison-2015/ "")
The protection applies to the `wp-login.php` script but can be extended to the `xmlrpc.php` one. The incident can also be written to the server `AUTH` log, which can be useful to the system administrator for monitoring purposes or banning IPs at the server level (e.g., Fail2ban).
= Real-time detection =
**File Guard** real-time detection is a totally unique feature provided by NinjaFirewall: it can detect, in real-time, any access to a PHP file that was recently modified or created, and alert you about this. If a hacker uploaded a shell script to your site (or injected a backdoor into an already existing file) and tried to directly access that file using his browser or a script, NinjaFirewall would hook the HTTP request and immediately detect that the file was recently modified or created. It would send you an alert with all details (script name, IP, request, date and time).
= File integrity monitoring =
**File Check** lets you perform file integrity monitoring by scanning your website hourly, twicedaily or daily. Any modification made to a file will be detected: file content, file permissions, file ownership, timestamp as well as file creation and deletion.
= Watch your website traffic in real time =
**Live Log** lets you watch your website traffic in real time. It displays connections in a format similar to the one used by the `tail -f` Unix command. Because it communicates directly with the firewall, i.e., without loading WordPress, **Live Log** is fast, lightweight and it will not affect your server load, even if you set its refresh rate to the lowest value.
= Event Notifications =
NinjaFirewall can alert you by email on specific events triggered within your blog. Some of those alerts are enabled by default and it is highly recommended to keep them enabled. It is not unusual for a hacker, after breaking into your WordPress admin console, to install or just to upload a backdoored plugin or theme in order to take full control of your website. NinjaFirewall can also [attach a PHP backtrace](https://blog.nintechnet.com/ninjafirewall-wp-edition-adds-php-backtrace-to-email-notifications/ "NinjaFirewall adds PHP backtrace to email notifications") to important notifications.
Monitored events:
* Administrator login.
* Modification of any administrator account in the database.
* Plugins upload, installation, (de)activation, update, deletion.
* Themes upload, installation, activation, deletion.
* WordPress update.
* Pending security update in your plugins and themes.
= Stay protected against the latest WordPress security vulnerabilities =
To get the most efficient protection, NinjaFirewall can automatically update its security rules daily, twice daily or even hourly. Each time a new vulnerability is found in WordPress or one of its plugins/themes, a new set of security rules will be made available to protect your blog immediately.
= Shared Memory use =
Although NinjaFirewall is already much faster than other WordPress plugins, the WP+ Edition brings its performance to a whole new level by using Unix shared memory in order to speed things up even more. This allows easier and faster inter-process communication between the firewall and the plugin part of NinjaFirewall and, because its data and configuration are stored in shared memory segments, the firewall does not need to connect to the database any longer. This dramatically increases the processing speed (there is nothing faster than RAM), prevents blocking I/O and MySQL slow queries, specially on a very b
没有合适的资源?快使用搜索试试~ 我知道了~
【WordPress插件】2022年最新版完整功能demo+插件v4.4.3 Nulled.zip
共97个文件
php:47个
png:20个
html:6个
1.该资源内容由用户上传,如若侵权请联系客服进行举报
2.虚拟产品一经售出概不退款(资源遇到问题,请及时私信上传者)
2.虚拟产品一经售出概不退款(资源遇到问题,请及时私信上传者)
版权申诉
0 下载量 154 浏览量
2022-04-11
14:06:34
上传
评论
收藏 7.4MB ZIP 举报
温馨提示
"【WordPress插件】2022年最新版完整功能demo+插件v4.4.3 Nulled NinjaFirewall WP+ Edition ninjafirewall wp +版" ---------- 泰森云每天更新发布最新WordPress主题、HTML主题、WordPress插件、shopify主题、opencart主题、PHP项目源码、安卓项目源码、ios项目源码,更有超10000个资源可供选择,如有需要请站内联系。
资源推荐
资源详情
资源评论
收起资源包目录
【WordPress插件】2022年最新版完整功能demo+插件v4.4.3 Nulled.zip (97个子文件)
nfwplus
.htninja.sample 946B
.htaccess 108B
images
ns_integration.png 7KB
welcome.png 48KB
ninjascanner.png 29KB
logo_nr_80.png 7KB
logo_pro_80.png 6KB
twitter_ntn.png 3KB
ninjafirewall_75.png 6KB
rate.png 556B
bar-high.png 210B
ninjafirewall_32.png 2KB
index.html 82B
nf_icon.png 505B
bar-medium.png 209B
ninjafirewall_50.png 3KB
ninjafirewall_100.png 7KB
ninjafirewall_20.png 586B
progress.gif 1KB
nintechnet.png 9KB
bar-critical.png 165B
logo_ns_80.png 6KB
nintechnet_50.png 3KB
logo_nm_80.png 8KB
uninstall.php 4KB
LICENSE.TXT 35KB
index.html 112B
static
chart.min.js 191KB
index.html 82B
ninjafirewall.js 28KB
ninjafirewall.css 5KB
languages
README.TXT 156B
.htaccess 377B
nfwplus-fr_FR.mo 228KB
index.html 82B
nfwplus-fr_FR.po 407KB
nfwplus.pot 169KB
nfwplus.php 55KB
rules 86KB
lib
anti_malware.php 2KB
events.php 10KB
security_rules.php 2KB
thickbox.php 19KB
monitoring.php 3KB
nfw_log.php 5KB
custom_firewall.php 1KB
loader.php 534B
.htaccess 409B
fw_gateways.php 2KB
logs.php 3KB
monitoring_file_guard.php 5KB
access_control.php 51KB
event_notifications.php 19KB
monitoring_file_check.php 27KB
antispam.php 9KB
monitoring_web_filter.php 8KB
firewall.php 95KB
dashboard_statistics.php 6KB
i18n-extra.php 12KB
network.php 3KB
index.html 82B
dashboard.php 25KB
logs_centralized_logging.php 7KB
init_update.php 8KB
custom_plugin.php 946B
share
.htaccess 409B
GeoIPv4ASN.dat 5.44MB
index.html 82B
GeoIPv6ASN.dat 2.59MB
iso3166.csv 4KB
geoip.inc 8KB
GeoIPv4.dat 2.13MB
GeoIPv6.dat 3.79MB
font.ttf 103KB
scheduled_tasks.php 6KB
security_rules_update.php 19KB
fw_livelog.php 5KB
logs_live_log.php 19KB
widget.php 6KB
install.php 11KB
sign.pub 800B
dashboard_about.php 2KB
utils.php 62KB
firewall_policies.php 70KB
help.php 67KB
locales.php 85KB
firewall_options.php 22KB
fw_centlog.php 2KB
install_default.php 11KB
logs_firewall_log.php 24KB
dashboard_license.php 10KB
security_rules_editor.php 6KB
login_protection.php 22KB
fw_fileguard.php 3KB
email_sodium.php 6KB
event_updates.php 8KB
readme.txt 15KB
共 97 条
- 1
资源评论
Lee达森
- 粉丝: 968
- 资源: 1万+
上传资源 快速赚钱
- 我的内容管理 展开
- 我的资源 快来上传第一个资源
- 我的收益 登录查看自己的收益
- 我的积分 登录查看自己的积分
- 我的C币 登录后查看C币余额
- 我的收藏
- 我的下载
- 下载帮助
安全验证
文档复制为VIP权益,开通VIP直接复制
信息提交成功