Hot!prevent execution of scripts and defacing a vulnerable website

Author
sims
Gold Member
  • Total Posts : 159
  • Scores: -4
  • Reward points: 0
  • Joined: 2014/06/09 03:26:11
  • Status: offline
2020/09/01 12:20:24 (permalink)
0

prevent execution of scripts and defacing a vulnerable website

Hi,
How to prevent execution of scripts  and defacing a vulnerable websites 
Ips , for example a wordpress site 
Thanks 
#1

5 Replies Related Threads

    Yurisk
    Silver Member
    • Total Posts : 112
    • Scores: 22
    • Reward points: 0
    • Joined: 2011/12/04 03:30:01
    • Status: online
    Re: prevent execution of scripts and defacing a vulnerable website 2020/09/01 21:45:47 (permalink)
    0
    If using just Fortigate IPS, look at the list of vulnerabilities it can protect from - https://fortiguard.com/search?q=wordpress&engine=1 to see if it is enough for your case .  
    Anti-Defacement is a feature of Fortiweb only - when enabled it watches for the website unauthorized changes, and if found any - re-uploads the saved copy of the website to the server. 
    #2
    dirty_white_hat
    New Member
    • Total Posts : 3
    • Scores: 0
    • Reward points: 0
    • Joined: 2020/09/18 15:38:24
    • Status: offline
    Re: prevent execution of scripts and defacing a vulnerable website 2020/09/21 08:39:29 (permalink)
    0
    Update the WordPress site.
     
    Start with the underlying host architecture. Ensure that the host updates their platform. Then change your PHP version to latest. If you don't see PHP 7.4+ you will need to open a support ticket with the host and tell them you need the latest version of PHP because you got hacked due to their insecure platform. Completely wipe the site. Install the latest version of WordPress fresh. Update WordPress and all plugins. Only after everything is at the latest version then you can restore from a backup taken before the system was hacked. Only restore the DB and Content, do not restore the insecure version of WordPress itself. Ensure to update everything again after the restore. Install a WordPress security plugin.
     
    If you actually did prevent the execution of scripts it would make the site inoperable. If you want a site that doesn't run any scripting then stop using WordPress. Make a pure HTML5 based site. That is the only way.
     
    If you don't understand any of these steps then it's time to hire a professional.
    #3
    sims
    Gold Member
    • Total Posts : 159
    • Scores: -4
    • Reward points: 0
    • Joined: 2014/06/09 03:26:11
    • Status: offline
    Re: prevent execution of scripts and defacing a vulnerable website 2020/09/22 10:28:48 (permalink)
    0
    Hi,
    Changing  flow mode  to proxy mode  will give any benefits ?
     
    Thanks
    #4
    Yurisk
    Silver Member
    • Total Posts : 112
    • Scores: 22
    • Reward points: 0
    • Joined: 2011/12/04 03:30:01
    • Status: online
    Re: prevent execution of scripts and defacing a vulnerable website 2020/09/22 23:13:22 (permalink)
    0
    Against web defacing and such? Nope
     
    #5
    sims
    Gold Member
    • Total Posts : 159
    • Scores: -4
    • Reward points: 0
    • Joined: 2014/06/09 03:26:11
    • Status: offline
    Re: prevent execution of scripts and defacing a vulnerable website 2020/09/23 00:56:48 (permalink)
    0
    Hi,
    Is there a way to stop uploading scripts to the web server ?
    How can I stop scanning using kali ? 
     
    Thanks
     
     
    #6
    Jump to:
    © 2020 APG vNext Commercial Version 5.5