Security assessment
A security assessment is the first step to secure your WordPress site.
Two different kinds of assessments can be performed, depending on the level of depth and detail that you want to obtain: a first surface level assessments („Light“) which analyze the most obvious vulnerabilities, and a more thorough assessment („Deep“).
Depending on the size and criticality level of the website, the first level is indicated for small to medium business websites (less than 100 pages), and the second level for a large and mission-critical site (eCommerce, Corporate).
Assessment
Light *
100
-
Light scan (WPScan)
-
Malware scan
-
Blacklisting scan
-
WP version
-
PHP version
-
xmlrpc + Rest API
* For business sites
Assessment
Deep *
200
-
Light assessment +
-
Thorough scan (WPScan)
-
Theme + plugin vulnerabilities
-
HTTP Security Headers
-
Folders + file settings
-
Hosting security
* For mission-critical sites (eCommerce and Corporate)