Q: Malicious Code Scan?
Does this plugin scan for malicious code form within all the folders and files? For example can it detect if there have been malicious files, or code within existing files, placed within the wp-includes folder? In 15 years I've had that happen about 10-20 times and it's almost the only type of hacking that I've encountered.
Lars_Koudal
Apr 4, 2025A: Yes, WP Security Ninja scans all core WordPress files and folders, including wp-includes and wp-admin. Our core scanner checks the official WordPress repository for a list of files and their expected file stamps based on the WordPress version and locale you are using. Any variation in these files, such as changes in content or the addition of unknown files, will be detected and flagged for review.
If any malicious code is placed in these critical folders, it will be identified. Let us know if you have any further questions!