Melapress File Monitor

Beschreibung

Get notified of file and permission changes on your WordPress sites and boost reliability & security

Melapress File Monitor is a WordPress file integrity monitoring plugin that keeps track of file and permission changes on your WordPress websites. It enables you to promptly identify code changes, file and directory permission changes, leftover files, malicious code, and malware injections – and take action.

Install Melapress File Monitor on your website to:
* Detect malware, infected files or files altered by bad actors
* Keep track of the last code changes on your website for easier troubleshooting
* Identify changes in file and directory permissions
* Identify leftover & backup files that can lead to sensitive business & technical data exposure
* Spot malware injections early to avoid irreparable site damage
* Conduct essential WordPress forensic analysis after a cyberattack.

The plugin allows you to monitor and log file and permissions changes across your WordPress site. You can see changes directly in the WordPress dashboard for easy access. You can also configure the plugin to send you file and permission change alerts through email whenever it detects a change; keeping you informed wherever you are.

It helps you easily spot leftover and backup files that could leave your website exposed, and detect malware and code changes, so you can remove the files and clean malware infections at the earliest possible.

Melapress File Monitor Plugin Features

Melapress File Monitor is a very easy to use plugin with zero admin work.

No False Alarms – Just Genuine Alerts!

This plugin uses an exclusive smart technology that detects WordPress core updates, plugin & theme installs, uninstalls, and updates.

When you update the WordPress core, install a new plugin, update a theme, or delete a plugin, it won’t flood you with hundreds of alerts prompting a false alarm. You only get alerted of genuine file and permission changes that can have an effect on the functionality and security of your WordPress site!

Instant Email Notifications

After a scan, the Melapress File Monitor plugin sends an email with the list of file and permission changes it identifies on your WordPress sites and multisite networks.

The email includes all the details you require to track WordPress file changes, such as:
* The filename and the path of the file
* A count of how many files were added, modified or deleted
* A highlight of the site admin changes that caused the file changes, such as the plugins or themes installs, uninstalls, and updates.

Scans ALL Your Files, Including Custom Code

Melapress File Monitor can scan any type of file and it is not limited to WordPress and PHP files. Apart from the WordPress core files, plugins and themes files, it will also scan any other custom code files that you might have on your WordPress site.

It also compares the WordPress core files of your website to the list of files on the official WordPress repository, so it will also alert you if a WordPress core file has been tampered with, or changed. You can also choose to exclude specific files, directories, and extensions for complete control.

To learn more on both the file integrity monitoring technologies the plugin uses refer to how the plugin detects file changes on WordPress

WordPress Multisite Networks Support

The Melapress File Monitor plugin can also detect file changes on WordPress multisite networks. When installed on a network, the plugin configuration and alerts are only available to the super administrators, preventing possible disclosure of sensitive information that could jeopardize the security of the sites on the network.

Other Notable Plugin Features

  • Optimized scanning technology that does not affect the performance of your site
  • Fully configurable file scan frequency (hourly, daily, weekly, time of the day)
  • Instant file integrity scans with just a click of a button
  • Ability to exclude directories, files, and file types from the scan
  • Configurable maximum file size to scan
  • File changes data only available to administrators for better security

Free Plugin Support

Support for Melapress File Monitor is available for free via:

MAINTAINED & SUPPORTED BY MELAPRESS

Melapress builds high-quality niche WordPress security & management plugins, including WP Activity Log, Melapress Login Security, and others.

Visit the Melapress website for more information about the company and the plugins it develops.

Install the plugin from within WordPress

WordPress security is easy with Melapress File Monitor. Simply:

  1. Navigate to Plugins > Add New, from your WordPress dashboard
  2. Search for Melapress File Monitor
  3. Install & activate Melapress File Monitor from your Plugins page

Install the plugin manually (via file upload)

  1. Download the plugin from the WordPress plugins repository
  2. Unzip the zip file and upload the folder to the /wp-content/plugins/ directory
  3. Activate the Melapress File Monitor plugin through the Plugins page in WordPress

Translate the plugin in your own language

If you want to help us translate this plugin in your own language please contact us. We will credit all translators.

Screenshots

  • The plugin is very easy to install and configure – follow the install wizard through which you can configure the scan frequency and times, email notification settings, which file extensions to exclude from a scan and other scan details via an easy to follow setup wizard.
  • Once the wizard is completed the first time scan starts automatically.
  • In the plugin dashboard you can see the recent list of file changes events, which should give you a good overview of the detected file changes.
  • The plugin’s smart technology does not just report file changes. It can detect if a new plugin has been added, updated, or removed, and it reports the details rather than just flagging a file change.
  • The plugin can also detect when new files are added to the core of your website, even if it is not a WordPress or php file.
  • You can use the plugin’s search filter to search for specific files and find what you need for in just seconds, in case you have a good number of file changes events.
  • The plugin can also detect changes in the WordPress core. During the scan it compares the core on your website to that on the official repository, and if there are any differences, it will report them to you.
  • The plugin is fully configurable and can easily be fine tuned to meet your requirements. Every setting in the setup wizard, and many other settings, can be configured at any time from the plugin’s Settings page.

FAQ

Is Melapress File Monitor free?

Yes, Melapress File Monitor is a 100% free plugin.

Does the plugin send any data to Melapress?

No, the plugin does not send any data to us whatsoever.

Can I use Melapress File Monitor as a malware detector or to detect security breaches?

Melapress File Moniotor is not an IDS (Intrustion Detection System) and as such does not monitor for breaches. However, if a bad actor managed to gain access and alters a file, Melapress File Monitor will alert you of the change. To that extent, it can function as a type of malware detection system, without actually specifying the type of malware or analysing the signature. It would detect malware by alerting you of file changes, but not specifying whether it is malware or not.

Does Melapress File Monitor track file changes across my entire WordPress website?

Yes, Melapress File Monitor scans all of your WordPress files including WordPress core files, custom code, plugins, themes, and media. You can set exemptions if you want so that certain file extensions and directories are not included in the scan. You can also ask Melapress File Monitor to cross-check WordPress core files with the official WordPress repository.

Where can I see file changes?

Melapress File Monitor automatically send an email at the end of the scan with its findings. You can also see deteced file changes in the WordPress dashboard.

Does Melapress File Monitor keep a history of scans?

Yes, you can configure the plugin to keep a histroy of all scan results.

Does the plugin receive updates?

We update the plugin regularly to ensure the plugin continues to run in tip-top shape while adding new features from time to time.

Does Melapress File Monitor include support?

At Melapress we stand behind all of our plugins, which is why we include one-to-one email support with all of our plugins. We also offer a Knowledge Base with tutorials and quick answers to commonly asked questions.

How do I uninstall Melapress File Monitor?

To uninstall Melapress File Monitor, login to your WP admin dashboard, navigate to Plugins > Installed Plugins, locate Melapress File Monitor, click on Deactivate and then Uninstall.

How can I report security bugs?

You can report security bugs through the Patchstack Vulnerability Disclosure Program. Please use this form. For more details please refer to our Melapress plugins security program.

Rezensionen

9. August 2024 3 Antworten
Plugin is great for monitoring, but there are some small issues currently with the settings of the notifications which should be fixed in the next release. it would be great to have option to export and import settings of the plugin (mainly ignored folders), which would be useful if using plugin on multiple websites (you can achieve it in the database, but it’s not very user friendly).
11. April 2024 5 Antworten
On a custom, self-managed VPS this plug brought my server to its knees, resulting in constant 504 gateway timeouts until I deleted it. Glad I only tested this on one site, I will not use it again and will keep my files locked down instead.
9. März 2024 1 Antwort
I agree that the new version is very bad. Before version 2.0, everything was fast and simple. Now it ’s something clumsy . I had to abandon this plugin and use a solution that gives the same result in 3 seconds.
27. Juli 2023
I use this plugin on a daily basis to be notified if any malicious files are added to my server without my knowledge. Had a small issue with another plugin causing some conflicts and this plugin support team gave me a code snippet to resolve the issue and it was not even there plugin causing the conflict. Now that is customer service 🙂
13. Juli 2023
This plugin gives you a hawk’s eye over each file of your website helping you identify website hacks (if any) right away as hacks involve adding/modifying/deletion of files. This plugin helps you not anymore panic wondering which files were injected into the website as part of website attacks — Malware, virus, etc., And, this plugin comes with needed functionalities to make things easy — very thoughtful. If this is not enough, this plugin is TOTALLY FREE! Great work. God bless. Note: I use Litespeed Cache – I had to tweak the litespeed Cache’s setting: Cache > Excludes > Do Not Cache Roles – Administrator (had to check the „Administrator“ box).
27. Juni 2023
I would like to see randomize function added to the scan start times so that the scan time does not start at exactly the same time each hour/day/week. I also think there should be an increment between hourly and day. and day and week. Why not put each __ hour and let the user input a more precise scanning interval? (e.g. every 4 hours; every 2 days). There is also a cosmetic error where the path displayed in the log for each row can get bunched up in a tiny column. But other than that, it seems to do everything it is supposed to do. very simple plugin that monitors file changes + email you of a summary of any detected changes. I decided to give it 4.5 stars now, so they get the benefit rounding up. For those not using another plugin like WordFence Pro, or want a simpler way to scan for file changes, this is a good candidate.
Alle 26 Rezensionen lesen

Mitwirkende & Entwickler

„Melapress File Monitor“ ist Open-Source-Software. Folgende Menschen haben an diesem Plugin mitgewirkt:

Mitwirkende

„Melapress File Monitor“ wurde in 4 Sprachen übersetzt. Danke an die Übersetzerinnen und Übersetzer für ihre Mitwirkung.

Übersetze „Melapress File Monitor“ in deine Sprache.

Interessiert an der Entwicklung?

Durchstöbere den Code, sieh dir das SVN Repository an oder abonniere das Entwicklungsprotokoll per RSS.

Änderungsprotokoll

2.1.1 (2024-10-21)

  • Plugin improvements

    • Added more checks and user input sanitization in the plugin.
  • Security fix

    • Fixed a SQL injection in the Search placeholder.

      • Bug fixes
    • Fixed a failed nonce issue when searching for some speicfic strings.
    • Fixed: New added plugin or files via the media module not reported in plugin.