WPIDC/wp-hack-fix
2
0
Fork 0
mirror of https://github.com/kalprajsolutions/wp-hack-fix.git synced 2025-10-03 13:51:44 +08:00
Code Issues Projects Packages Wiki Activity Actions
A simple CLI tool to stop malicious processes, scrub hacked WordPress installs, detect leftover malware, and reinstall core files via WP‑CLI.
10 commits 1 branch 1 tag 40 KiB
Find a file
Exact
Pushkraj Jori bf07bc9ac9
Update README.md
2025-07-07 11:59:40 +05:30
LICENSE Initial commit 2025-07-07 11:25:34 +05:30
README.md Update README.md 2025-07-07 11:59:40 +05:30
wp-fix-hacked.sh Update wp-fix-hacked.sh 2025-07-07 11:59:23 +05:30

README.md

wp-hack-fix

A lightweight, CLI-powered utility to automatically clean and restore hacked WordPress installations. Stop malicious processes, scrub compromised files, and reinstall core in just one command.

Keywords: WordPress security, malware cleanup, hacked site recovery, WP-CLI, server hardening, PHP security, automated fix, SEO optimization

🚀 Quick Start (oneliner)

Run the entire cleanup and restore workflow in a single command:

curl -sSL https://raw.githubusercontent.com/kalprajsolutions/wp-hack-fix/main/wp-fix-hacked.sh | bash

This fetches the latest script from GitHub and executes it with elevated privileges. Ensure you trust the source before running.

🔧 Features

  • Process shutdown: Stops all processes owned by the current user to halt running malware.
  • TODO: Selective cleanup: Deletes everything except wp-config.php and wp-content/ in each WP install.
  • ELF binary removal: Scans for and removes ELF payloads commonly dropped by attackers.
  • Suspicious code scan: Flags any PHP files containing eval( or base64_decode( for manual review.
  • Core restoration: Re-downloads a clean WordPress core via WPCLI (wp core download --skip-content --force).
  • SEO & performance: Optional hooks to flush caches and optimize database (extendable).

📋 Usage

  1. Run the installer (see Quick Start above).

  2. Or clone & run manually:

    git clone https://github.com/kalprajsolutions/wp-hack-fix.git
cd wp-hack-fix
chmod +x wp-fix-hacked.sh
sudo ./wp-fix-hacked.sh /path/to/your/webroot

  3. Options:

    • ROOT_DIR (default /var/www): Base directory to scan for installs.
    • --dry-run: Show actions without deleting (coming soon).

  4. Postcleanup tips:

    • Rotate database credentials and salts in wp-config.php.
    • Update all plugins/themes and core to latest versions.
    • Review server logs for unusual activity.
    • Implement a regular backup & security monitoring solution.

🔗 Resources & SEO Benefits

  • Improved security: Removes backdoors and malicious code, reducing risk of reinfection.
  • Plugin/theme integrity: Guarantees a clean install of WordPress core, improving compatibility and performance.
  • Search ranking: Clean, fast sites are favored by search engines; removes hidden spam injections.

🤝 Contributing

  1. Fork the repo.
  2. Create a feature branch (git checkout -b feature/your-feature).
  3. Commit your changes (git commit -m "Add your feature").
  4. Push to the branch and open a Pull Request.

📄 License

MIT © Kalpraj Solutions

⚠️ Provided as-is; use with caution and review the script before running on production environments.