Vulnerability Analysis Web Application

WPHardening – Fortify the security of any WordPress Installation

Installing WPHardening requires you to execute one console command:



Check a WordPress Project Before using the tool, we must ensure that our working directory is WordPress.

Change permissions:
This option is to add the correct permissions to files and directories.

Remove files that are not used
Part of the fortification of any system is to remove those files, directories or components required.

Create your robots.txt file
WordPress default does not incorporate the robots.txt file with this option poemos customize our robots.txt

For more information robots.txt

Remove all fingerprinting and Version

Check a TimThumb library

Create Index file
This file is created as a way to avoid sailing in a directory.

Download Plugins security:
The following is a list of the most commonly used security plugins that you can download automatically:

Wizard generated wp-config.php
This command automatically creates a file called wp-config-wphardening.php which can then rename it.

WPHardening update
With this option you can always have the latest version of WPHardening.

Use all options:

For more info visit:

Download at Git Repository

I started blogging around 2011 at #Ubuntupirates, #ProjectX and #pir8geek, I’m currently working as Network/Linux SysAdmin.

I’m a Linux,opensource advocate and interested in network security and InfoSec.

Leave a Reply