VMP WordPress Security – Firewall, Malware Scan

COMPREHENSIVE WORDPRESS SECURITY WITH ADVANCED FIREWALL

VMP WordPress Security provides complete protection for WordPress websites through an advanced multi-scanner architecture combined with a powerful Web Application Firewall. Our plugin features 11 specialized security scanners and comprehensive firewall protection that work together to detect malware, vulnerabilities, block attacks, and protect against security threats.

VMP WordPress Security includes Web Application Firewall (WAF), brute force protection, rate limiting, malware detection, file integrity monitoring, vulnerability scanning, user security analysis, and comprehensive threat protection.

🔥 WEB APPLICATION FIREWALL (WAF) – NEW IN 2.0

• Real-time attack blocking with pattern-based detection for XSS, SQL injection, RFI, LFI, and RCE attacks
• 150+ built-in security rules covering all major attack vectors and vulnerability patterns
• Attack logging and monitoring with detailed violation reports and attack statistics
• Rule management interface to enable/disable rules, filter by category, and view rule details
• Attack categorization with severity scoring and automated threat response
• IP-based blocking for repeat offenders and malicious actors
• URL pattern blocking to protect sensitive endpoints and ban malicious URLs
• Learning mode support for fine-tuning rules based on legitimate traffic patterns

🛡️ BRUTE FORCE PROTECTION – NEW IN 2.0

• Login attempt limiting with configurable thresholds and automatic lockout durations
• Invalid username blocking to prevent user enumeration attacks immediately
• Leaked password prevention checking credentials against known breach databases
• Strong password enforcement with configurable complexity requirements for admins and users
• Username blacklisting to immediately block known malicious usernames
• Security lockouts with automatic IP blocking after multiple failed attempts
• Failed login tracking with detailed attempt logs and IP monitoring
• Permanent ban option for persistent attackers exceeding threshold limits

⚡ RATE LIMITING & THROTTLING – NEW IN 2.0

• Request rate limiting to prevent resource exhaustion and content scraping
• Human vs crawler detection with intelligent traffic classification
• 404 error monitoring to detect scanning and vulnerability probing attempts
• Google crawler handling with verified crawler exception rules
• Configurable limits for global requests, crawlers, humans, and 404 errors
• Action options including throttling (delay) or blocking violators
• Automatic block duration with configurable timeout periods
• Allowlisted 404 URLs to exclude legitimate missing page patterns

🚫 ADVANCED BLOCKING FEATURES – NEW IN 2.0

• IP address blocking with support for individual IPs and CIDR ranges
• User agent blocking to stop malicious bots and automated tools
• Referrer blocking to prevent spam and unauthorized hotlinking
• Custom URL banning with pattern matching for instant IP blocks
• Whitelist management for trusted IPs and services that bypass all rules
• Block scheduling with temporary and permanent blocking options
• Attack statistics showing blocks by type, IP, and time period
• Country blocking using GeoIP detection (premium feature)

🛡️ MULTI-SCANNER SECURITY ARCHITECTURE

• Server State Scanner monitors server configuration and security settings
• File Changes Scanner detects unauthorized modifications to WordPress core, themes, and plugins
• User Security Scanner identifies suspicious user accounts, risky usernames, and admin enumeration
• Content Safety Scanner analyzes posts and comments for malicious content and URLs
• Public Files Scanner checks for exposed configuration files and sensitive data
• User Audit Scanner monitors user activities and permission changes
• Vulnerability Scanner identifies known security vulnerabilities in installed plugins and themes
• Malware Scanner detects malicious code, backdoors, and infected files
• Domain Blocklist Scanner checks against known malicious domains and reputation databases
• Spamvertising Scanner identifies spam content injection and SEO spam attacks
• IP Spam Scanner monitors for suspicious IP addresses and bot activity

🔍 MALWARE DETECTION & FILE SCANNING

• Advanced malware signatures with pattern-based detection for backdoors and trojans
• File integrity monitoring compares files against WordPress.org repository versions
• Binary file scanning detects malicious code in images and executables
• WordPress core verification ensures core files haven’t been tampered with
• Plugin and theme scanning identifies modified or infected extensions
• Unknown file detection flags suspicious files that don’t belong to WordPress

🚨 VULNERABILITY & THREAT DETECTION

• Plugin vulnerability scanning checks for known security issues in installed plugins
• Theme vulnerability detection identifies security flaws in active themes
• WordPress core vulnerabilities monitors for outdated WordPress installations
• Google Safe Browsing integration checks URLs against Google’s malware database
• Suspicious admin detection identifies potentially compromised administrator accounts
• Password security analysis detects weak or compromised passwords

⚙️ SCAN CONFIGURATION & MANAGEMENT

• Multiple scan types: Limited (quick), Standard (balanced), High Sensitivity (comprehensive), Custom (configurable)
• Scheduled scanning with flexible timing options (hourly, daily, weekly)
• Scan monitoring system with automatic recovery from interrupted scans
• Performance optimization with memory management and resource controls
• File exclusion patterns to customize scanning scope and reduce false positives
• Progress tracking with real-time status updates and detailed logging

🔧 FIREWALL CONFIGURATION & MANAGEMENT – NEW IN 2.0

• Comprehensive options page for all firewall settings and rule customization
• WAF protection levels including basic, advanced, and learning modes
• Brute force settings with granular control over login security features
• Rate limiting controls for fine-tuning traffic management rules
• Advanced blocking options including IP whitelisting and service bypasses
• Custom block messages to display security information to blocked visitors
• Real-time statistics showing attack counts by time period and category
• Firewall status dashboard with visual indicators for all protection features

📊 ADMIN INTERFACE & REPORTING

• Dashboard overview showing security status and recent scan results
• Firewall dashboard showing protection status, attack statistics, and recent blocks
• Blocked attacks table with detailed information on IP, attack type, and timestamp
• WAF rules management interface for enabling/disabling and customizing rules
• Attack filtering by time period (today, 7 days, 30 days, all time)
• Detailed scan results with issue classification and remediation guidance
• Audit logging tracks all security events and user activities
• Scan result reporting with detailed security issue analysis and remediation guidance
• Activity logs accessible via “Show Log” and “See Full Log” interface buttons
• Issue management with options to ignore detected threats or repair infected files

🔧 ADVANCED FEATURES

• Early bootstrap protection WAF loads before WordPress for maximum security
• 150+ rule updated to stay protected against emerging threats
• API integrations including Google Safe Browsing for URL reputation checking
• Background processing prevents timeouts during large site scans
• Resource management with configurable memory limits and execution timeouts
• IPv4/IPv6 support with option to force IPv4-only scanning
• Multi-site compatibility works with WordPress multisite installations
• Flexible configuration with comprehensive options and settings management

Privacy and Data Collection

VMP WordPress Security respects your privacy and follows WordPress.org guidelines for external service usage. This plugin may collect and transmit data to external services for security analysis:

Google Safe Browsing API: When URL reputation checking is enabled, URLs found in your content, posts, comments, and uploaded files are sent to Google’s Safe Browsing service to check against databases of malicious websites, phishing sites, and malware distribution points. This helps protect your site from security threats.

Data sent to Google includes:
– URLs extracted from posts, pages, comments, and file content
– Website URLs being analyzed for reputation
– No personal information, user data, or site content is transmitted beyond the URLs themselves

Data NOT sent to Google:
– User personal information or login credentials
– Post content, comment text, or page content
– Database information or configuration details
– User behavior or analytics data
– Firewall rules or blocking information
– Attack logs or security event data

Your Privacy Rights:
– In the current version (2.0.0), Google Safe Browsing integration is enabled by default for security protection
– Future plugin updates will include user settings to disable external service usage
– No data is collected or stored by VMP WordPress Security itself beyond standard WordPress security logs

Third-Party Privacy Policies:
– Google Safe Browsing API: https://developers.google.com/safe-browsing/v4/usage-limits
– Google Privacy Policy: https://policies.google.com/privacy

Data Retention:
VMP WordPress Security caches URL reputation results locally for up to 1 hour to improve performance and reduce external API calls. Attack logs and firewall events are stored locally on your server. These cached results are stored only on your server and are automatically purged.

Current Limitation:
In version 2.0.0, Google Safe Browsing integration is automatically enabled for URL scanning. Future versions will include user settings to control external service usage. If you prefer not to use external services, please contact the plugin developer or wait for the next update which will include privacy controls.