Re: WordPress Security Audit and Review

[David Sheryn <dsheryn () LONDON EDU>]

I have no experience of using it or its effectiveness, but there's also

http//:wordstress.org/


--
Sent from my mobile...
________________________________
From: The EDUCAUSE Security Constituent Group Listserv <SECURITY () LISTSERV EDUCAUSE EDU> on behalf of David James 
Anderson <David.Anderson () NAU EDU>
Sent: Monday, April 20, 2015 11:26:36 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] WordPress Security Audit and Review

This isn't 100% what you're asking for, but if you have a few technical hands available in the interim, WPSCAN is a lot 
of fun. :)

http://wpscan.org/
--
-David.


David Anderson
Information Security Analyst, Senior
Information Technology Services
Northern Arizona University
(928) 523-1225

On Apr 20, 2015, at 2:00 PM, Harry Hoffman <hhoffman () IP-SOLUTIONS NET<mailto:hhoffman () IP-SOLUTIONS NET>> wrote:

Have you looked at Edublogs? https://edublogs.org/

This is only 2nd hand information but I was under the impression that
they heavily monitor and vet the WP and modules they allow. Might save
you a ton of headaches as your audit and security are going to be point
in time only :-(

Hope this helps.

Cheers,
Harry




On 04/20/2015 12:57 PM, Thomas Carter wrote:
We are looking for a firm that can assist us in auditing and securing
our WordPress based sites. We are also looking for security best
practices for WordPress. We have audits at a higher level (OS, web
server), but have not focused in at an application level. Does anyone
have any recommendations for a firm that supplies these services?





Thomas Carter

Network and Operations Manager

Austin College

903-813-2564

AusColl_Logo_Email