1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

plugins from wplocker

Discussion in 'BlackHat Lounge' started by urobee, May 10, 2017.

  1. urobee

    urobee Junior Member

    Joined:
    May 1, 2016
    Messages:
    111
    Likes Received:
    25
    hello,

    I need your opinion girls and guys. Is it safe to use the plugins from wplocker after I checked them on virustotal and with a wp plugin named Explot Scanner?

    thanks!
     
  2. ZlatanTheGod

    ZlatanTheGod Jr. VIP Jr. VIP

    Joined:
    Jun 27, 2016
    Messages:
    977
    Likes Received:
    1,306
    Gender:
    Male
    Occupation:
    The God
    Baddest idea ever.
     
    • Thanks Thanks x 2
  3. living2xl

    living2xl Jr. VIP Jr. VIP

    Joined:
    Dec 9, 2011
    Messages:
    1,601
    Likes Received:
    309
    Occupation:
    Sippin dat juice - Shout it louder!
    Location:
    Not sleeping!
    Home Page:
    why do you think virus total detects all viruses? dont you think hackers precheck their made viruses first on a no report all round virus checker?
    so many FUD (fully undetectable) virus out there
    + this type of files with server side code (which probably has encrypted parts inside) are much harder to detect and do not have the advantage like exe that are more widely available to cloud/collective reporting of antiviruses
    man
    srsly its the worst idea unless you want to read the whole plugin files line by line to check and even then you could easily miss it because so many lines to read :D
     
    • Thanks Thanks x 1
  4. WPninja

    WPninja Junior Member

    Joined:
    Apr 25, 2017
    Messages:
    123
    Likes Received:
    19
    Gender:
    Male
    Occupation:
    Creative WP Front-end Expert
    Location:
    Coding-Jungle
    If you're a developer and know how php works, then go with them. Find out the encrypted codes and then use it without any issues. But if you've no idea about php, forget about it.

    Note that, NOTHING IS FREE IN THIS WORLD!!!
     
    • Thanks Thanks x 1
  5. ZlatanTheGod

    ZlatanTheGod Jr. VIP Jr. VIP

    Joined:
    Jun 27, 2016
    Messages:
    977
    Likes Received:
    1,306
    Gender:
    Male
    Occupation:
    The God
    That isn't true. Check this amazing list.
     
    • Thanks Thanks x 2
  6. WPninja

    WPninja Junior Member

    Joined:
    Apr 25, 2017
    Messages:
    123
    Likes Received:
    19
    Gender:
    Male
    Occupation:
    Creative WP Front-end Expert
    Location:
    Coding-Jungle
    I can start to argue from the very beginning of that list :D

    Basically, those are not free, they are also worthy of something, yes, it's not money but there something more valuable than money :p
     
  7. sturose

    sturose Jr. VIP Jr. VIP

    Joined:
    Nov 6, 2013
    Messages:
    1,575
    Likes Received:
    1,936
    Gender:
    Male
    Occupation:
    Clicking my own adverts
    Location:
    Stuck in a rut
    Only because they haven't found a way to tax them all yet!!:D
     
    • Thanks Thanks x 1
  8. lawyal

    lawyal Regular Member

    Joined:
    Oct 25, 2016
    Messages:
    320
    Likes Received:
    203
    Gender:
    Male
    Location:
    Upper Eastside
    Short answer is NO.
    You will definitely need to remove some lines of code to make the plugins work without doing harm to your site (allowing the attacker to post on your website, create users, delete content).
    They are hiding the code in every plugin in different places, so you need to know what you are looking for.

    This might help, but ONLY if the code is the same...
    https://wordpress.org/support/topic/code-added-to-functions-file/
     
    • Thanks Thanks x 1