WordPress Assessment
Independent security review of your WordPress powered site.
Expert Advice
Independent assessment from a Senior Security Analyst. No BS.
Streamlined Process
Focused on the things that matter. Clear and Accurate Results.
Know Your Exposure
Get a clear snapshot of your external vulnerabilities. Know what an attacker can see.
Get a Quote
- Validated Security Findings
- Fixed Price Security Assessment
- Fast turn around available (72 hrs)
- Clear results with recommended fixes
- Custom Options Available
- Security Review performed Quarterly (4 reports)
- Hassle Free Regular Assessments
- Monitor Ongoing System Changes
- Clear results with recommended fixes
- Custom Options Available
Some Common Questions
The most common WordPress installation that we assess are self hosted WordPress installations. WordPress sites hosted on the Automatic platform are generally not going to get much value from our service. The assessment will use common open source security testing tools and manual techniques to confirm any findings.
Our professional assessment services are popular with anyone who wants an independent third party review of their security posture. Clients are based around the world and vary from small business to large enterprises.
Of course! Agencies and consultants can use this service to perform security reviews of clients organisations. A value added service for your IT consulting or managed services.
There are a number of security vulnerability testing tools that we use as part of our testing toolkit. This includes but is not limited to OpenVAS, WPScan, Nikto, Nmap, SSLyze and Burp Suite. In addition to the automated scanning we will assess additional items on the site using manual testing techniques and will validate any findings from the scanners.
All security assessments are performed by a Certified Senior Security Analyst. Industry standard qualifications include GIAC (Global Information Assurance Certification) from the Sans Institute.
If you cannot afford the cost of a manual assessment you may like to try our automated DIY services. We have hosted open source vulnerability scanners and reconnaissance tools that can be run manually by members of your team. This involves planning your testing, receiving the raw results from our scanning tools, analysis and validation of those results.
By offering a focused tactical assessment service, we have streamlined the process and eliminated scope creep. Not everyone needs an assessment that takes weeks and costs tens of thousands of dollars. By having a fixed length testing window, the aim is to provide an external assessment of the WordPress installation that provides maximum value to the client.
Rest assured that our focus does not impact our availability to answer your questions before, during and after the assessment.
The report is compiled after analysis of the results from the automated and manual testing. Sections include an overall summary of the findings, a detailed list of discovered vulnerabilities and recommended remediation of any security issues. An attached appendix contains the raw results from the tools that were used during the assessment.
Payment is via Credit Card or PayPal, Hacker Target Pty Ltd is a Paypal verified business. Once we receive your initial booking we will provide a copy of the terms of the assessment and payment details. Following confirmation of payment, we are ready and will proceed with the assessment at your allotted time. Reports are available within 72 hours.
Get Started Here
Complete this form to request a WordPress Assessment. We will get back to you within 24 hours with a proposed plan, terms of the service and payment details.
With this fixed rate security assessment testing is conducted in a 24 hour window, with report delivered within 72 hours.
WordPress Security Assessment
Client Requirements:
- You must be the owner of the system or have explicit permission to have a third party security assessment performed against the target organisation.
- If the system is a managed service or shared web hosting you must notify and have permission from the provider of the managed service.
- A working backup of the target system is strongly recommended. Security testing is inherently intrusive and while the chance of anything bad happening is very low, there is always the chance that a system could be adversely impacted by the testing.
Deliverables:
- Detailed Security Report delivered within 72 hours.
- Report to contain discovered results and recommended remediation.
- Follow up questions to be conducted via email.