Security
When an attacker compromises a WordPress site, the first thing they do is modify files — injecting backdoors, adding malicious scripts, or altering core files. BlockForge monitors every file across all your installations, creating baselines and alerting you instantly when something changes that shouldn't.
WordPress file systems are complex — thousands of files across core, plugins, themes, and uploads. Attackers exploit this complexity to hide in plain sight, making changes that blend in with legitimate files.
Attackers inject PHP backdoors in obscure directories that survive plugin updates. Files named wp-cache.php or tucked inside /uploads/ can persist for months without detection.
Modified wp-login.php or wp-config.php can silently harvest credentials. These files look normal on the surface but contain injected code that sends login data to external servers.
Without knowing what "normal" looks like, you can't detect what's abnormal. If you've never fingerprinted your file system, any modification — legitimate or malicious — is invisible to you.
BlockForge creates a cryptographic fingerprint of every file in your WordPress installations. On each subsequent scan, files are compared against this baseline. New files, modified files, and deleted files are flagged immediately. Core files are also verified against official WordPress.org checksums, ensuring they haven't been tampered with — even if the modification predates your monitoring setup.
File Change Report
7 CHANGES/wp-includes/class-wp-query.php
/wp-content/uploads/2026/wp-cache.php
/wp-content/plugins/contact-form/readme.txt
/wp-content/uploads/2026/03/header.jpg
/wp-content/plugins/old-plugin/init.php
Complete file system visibility across all your WordPress sites — from baseline creation to real-time change detection and forensic audit trails.
Create a cryptographic fingerprint of every file in your installation. SHA-256 hashes ensure that even a single byte change is detected. Baselines update automatically after verified legitimate changes.
Automatically detect added, modified, and deleted files between scans. Each change is classified by type and flagged based on risk level — from routine plugin updates to suspicious core modifications.
WordPress core files are verified against official WordPress.org checksums. Any deviation from the official release — even a single injected line — is immediately flagged as a core integrity violation.
Not every change is suspicious. Define whitelist rules for directories, file patterns, and expected changes. Upload directories, cache files, and known modification patterns are filtered to reduce noise.
Intelligent alerting based on suspicious patterns — PHP files in upload directories, modified core files, new executable files in unexpected locations. Get notified about what matters, not routine changes.
Every detected change is recorded with timestamps, file hashes, and classification. Build a complete forensic timeline for incident investigation or compliance reporting — searchable and exportable.
File integrity monitoring works best alongside vulnerability scanning, malware detection, and configuration snapshots for layered WordPress security.
Start monitoring your WordPress file systems today. Free plan includes 3 sites.