plugin-icon

Genisoft Security Connector

Secure read-only connector linking your WordPress site to the WP Security malware-scanning service for remote security audits.
Évaluations
Version
0.8.1
Mis à jour récemment
Jul 18, 2026

Genisoft Security Connector is the official plugin for WP Security (by Genisoft) — a remote security audit and malware detection service for WordPress.

This plugin is a lightweight connector: it performs no analysis itself. It exposes a read-only REST API authenticated with HMAC-SHA256 that the WP Security engine calls to audit your site remotely, without SSH or FTP. The heavy analysis (detection of webshells, backdoors, injections, obfuscated code, WordPress core integrity checks against the official api.wordpress.org checksums, and YARA rules) runs on our servers, in an isolated environment — your site stays light and fast.

What the scanner detects:

  • PHP webshells and backdoors
  • Injectors and malicious redirects
  • Obfuscated / encoded code
  • Modified WordPress core files
  • Vulnerable plugins and themes (CVE)
  • Code injected into the database (wp_options, etc.)

Secure by design:

  • HMAC-SHA256 authentication on every request (signature + timestamp; requests older than 5 minutes are rejected). One unique key per site.
  • Read-only: files are read for analysis, never executed (no eval, exec or include on external content).
  • No SSH, no SFTP.

Third-party service

This plugin is a connector: it requires an account on the external WP Security service (https://wordpress.genisoft.fr) to be useful. Each time you start a scan from your WP Security dashboard, the service calls the plugin’s read-only REST API to read the files to analyze. File contents are not stored by the service — only analysis results (metadata) are kept; hosting is in the EU (GDPR).

  • Service website: https://wordpress.genisoft.fr
  • Terms of service: https://wordpress.genisoft.fr/legal/cgu
  • Privacy policy: https://wordpress.genisoft.fr/legal/confidentialite
Gratuitsur les plans payants
En procédant à l’installation, vous acceptez les Conditions d’utilisation de WordPress.com ainsi que les Conditions de l’extension tierce.
Testé jusqu’à version
WordPress 7.0.2
Cette extension est disponible en téléchargement pour votre site .