> Sucuri Security - Auditing, Malware Scanner and Security Hardening wordpress plugin resources analysis

Sucuri Security - Auditing, Malware Scanner and Security Hardening wordpress plugin resources analysis

Download This Plugin
Download Elegant Themes
Name Sucuri Security - Auditing, Malware Scanner and Security Hardening
Version 1.7.6
Author Sucuri, INC
Rating 90
Last updated 2015-02-10 12:19:00
Downloads
627315
Download Plugins Speed Test plugin for Wordpress

Home page

Delta: 0%

Post page

Delta: 0%
Sucuri Security - Auditing, Malware Scanner and Security Hardening plugin has no negative impact on PageSpeed score.

Home page PageSpeed score has been degraded by 0%, while Post page PageSpeed score has been degraded by 0%

Sucuri Security - Auditing, Malware Scanner and Security Hardening plugin added 54 bytes of resources to the Home page and 55 bytes of resources to the sample Post page.

Sucuri Security - Auditing, Malware Scanner and Security Hardening plugin added 0 new host(s) to the Home page and 0 new host(s) to the sample Post page.

Great! Sucuri Security - Auditing, Malware Scanner and Security Hardening plugin ads no tables to your Wordpress blog database.

Sucuri Inc is a globally recognized authority in all matters related to website security, with specialization in WordPress Security.

The Sucuri Security WordPress Security plugin is free to all WordPress users. It is a security suite meant to complement your existing security posture. It offers it’s users four key security features for their website, each designed to have a positive affect on their security posture:

  1. Security Activity Auditing
  2. File Integrity Monitoring
  3. Remote Malware Scanning
  4. Blacklist Monitoring
  5. Effective Security Hardening
  6. Post-Hack Security Actions
  7. Security Notifications
  8. Website Firewall (add on)

Security Activity Monitoring

This is perhaps the most underutilized security function. It’s the act of monitoring all security related events within your WordPress install. The challenge is, what makes up a security event. In the eyes of Sucuri, any change that occurs within the application could be categorized as a security event, as such we try to record it.

This is important because it allows you, the website owner, the ability keep a good eye on the various changes occurring within your environment. Who is logging in? What changes are being made?

Here is a video of the Security Activity Monitoring feature:

This feature is logging all activity to the Sucuri cloud, for safe keeping. This ensures that an attacker is not able to wipe your forensic data and prevent further security analysis after a compromise. If an attacker is able to bypass your security controls, your security logs will be kept safe within the Sucuri Security Operations Center (SOC).

This feature is particularly important to website / system administrators and security experts looking to understand what is going on with their website and when it’s happening.

Security File Integrity Monitoring

Security File Integrity Monitoring has been fundamental to the world of security. It’s the act of comparing a known good with the current state. If the current state differs from the known good, you know you have a problem. This is the basis of a lot of host Intrusion detection systems. It’s what we have built into the plugin.

It will create a known good the minute the plugin is installed. This will be of all the directories at the root of the install, this includes plugins, themes and core files.

Here is a video of the Security File Integrity Monitoring feature:

Remote Security Malware Scanning

This feature is powered by our very powerful scanning engine, found on our free security scanner - SiteCheck. It’s important to take some time to understand how this scanner works.

Here is a video of the Remote Security Malware Scanning feature:

There are limitations with the way this scanner works, you can find more info in that in the FAQ section.

Security Blacklist Monitoring

Another very interesting feature of the Security Malware Scanner is that it incorporates various blacklist engines. Security blacklist engines include the following:

  1. Sucuri Labs
  2. Google Safe Browsing
  3. Norton
  4. AVG
  5. Phish Tank
  6. ESET
  7. McAfee Site Advisor
  8. Yandex
  9. SpamHaus
  10. Bitdefender

These are some of the largest blacklisting entities, each having the ability to directly impact your brands online reputation. By synchronize with their environments we’re able to tell you, upon scan, whether any of them are negatively flagging your website with a security related issue.

If they do, then via our Website AntiVirus product, we’re able to help you get off the their security blacklist.

Effective Security Hardening

It’s easy to get lost in the world of security hardening. At Sucuri we clean 100’s of websites a day, many with the various security hardening configurations you find in various WordPress Security presentations. In this section, we add those that we feel to be most effective, and that complement the entire Sucuri suite of products.

Here is a video of the Effective Security Hardening feature:

Post-Hack Security Actions

Regardless of how good your security posture is, sometimes it’s impossible to prevent the inevitable. When this happens, we’ve included a section to help you walk through the three key things you should do after a compromise.

Here is a video of the Post-Hack Security Actions feature:

Security Notifications

Having all these security features would be useless unless you were notified of the issues. This is why we have made available security notifications. We have also expanded the various security related events, to provide website owners more flexibility in regards to what they want to know about. As a website owner, you have the option to make these security alerts as quiet or noisy as you would like.

Sucuri CloudProxy Website Firewall (Add On Security Service)

This is by far the coolest security feature Sucuri has to offer everyday website owners. It’s an enterprise grade Website Firewall known as CloudProxy. It is designed to give you the best security protection any website can hope for. It protects your website from a variety of website attacks and security events to include:

  1. Denial of Service (DOS / DDOS) Attacks
  2. Exploitation of Software Vulnerabilities
  3. Zero Day Disclosure Patches
  4. Brute Force Attacks against your Access Control Mechanisms

This is coupled with a number of features like:

  1. Performance Optimization
  2. Advanced Access Control Features
  3. Failover and Redundancy

This is not included as a Free option to the plugin, but is integrated so that if purchased you are able to activate. If you prefer to leverage the Sucuri Security Website Firewall (CloudProxy) product by itself, you have the option to operate the Website Firewall WordPress Security plugin in standalone mode.

Here is a video of the Sucuri Security Website Firewall (Add On Security Service) feature:

The Sucuri Security WordPress Security plugin is built by the team that is known for their proactive approach to security. It is built using intelligence gathered from thousands upon thousands of remediation cases, millions of unique domain scans and 10’s of millions of website security attack blocks.

Resources added by plugin to Home page/Post page in kB
Total size of resources for Home page/Post page in kB
Random Theme Tests
Blue Taste screenshot

Blue Taste

by: jabox

21085
0%
Tikva screenshot

Tikva

by: geschke

4262
0%