Genisoft Security Connector
Genisoft Security Connector is the official plugin for WP Security (by Genisoft) — a remote security audit and malware detection service for WordPress.
This plugin is a lightweight connector: it performs no analysis itself. It exposes a read-only REST API authenticated with HMAC-SHA256 that the WP Security engine calls to audit your site remotely, without SSH or FTP. The heavy analysis (detection of webshells, backdoors, injections, obfuscated code, WordPress core integrity checks against the official api.wordpress.org checksums, and YARA rules) runs on our servers, in an isolated environment — your site stays light and fast.
What the scanner detects:
- PHP webshells and backdoors
- Injectors and malicious redirects
- Obfuscated / encoded code
- Modified WordPress core files
- Vulnerable plugins and themes (CVE)
- Code injected into the database (wp_options, etc.)
Secure by design:
- HMAC-SHA256 authentication on every request (signature + timestamp; requests older than 5 minutes are rejected). One unique key per site.
- Read-only: files are read for analysis, never executed (no
eval,execorincludeon external content). - No SSH, no SFTP.
Third-party service
This plugin is a connector: it requires an account on the external WP Security service (https://wordpress.genisoft.fr) to be useful. Each time you start a scan from your WP Security dashboard, the service calls the plugin’s read-only REST API to read the files to analyze. File contents are not stored by the service — only analysis results (metadata) are kept; hosting is in the EU (GDPR).
- Service website: https://wordpress.genisoft.fr
- Terms of service: https://wordpress.genisoft.fr/legal/cgu
- Privacy policy: https://wordpress.genisoft.fr/legal/confidentialite