WPScan WordPress Security Commandments

Today we are releasing three different posters related to WPScan and WordPress security. Hopefully you find them useful enough and beautiful enough to hang on your wall.

The three posters are:

  1. WPScan CLI Cheat Sheet Poster

A cheat sheet for WPScan CLI commands.

  1. WPScan Plugin Security Commandments

A list of 10 plugin security commandments for WordPress plugin developers.

  1. WPScan WordPress Security Commandments

The posters are available in PNG, JPG and PDF formats. If you’re going to print the posters, PDF would be the best format to use. Also, before printing, please choose a printing service that uses recycled and/or recyclable paper, and supports other eco-friendly initiatives, such as being FSC Certified.

WPScan WordPress Security Commandments List

  1. Remember to keep WordPress, its plugins and themes updated.

  2. Use secure passwords with the help of a password manager.

  3. Keep privileged users to a minimum.

  4. Keep plugins and themes to minimum.

  5. Install a reputable security plugin.

  6. Use encrypted communications with HTTPS and a trusted TLS Certificate.

  7. Disable file editing with the DISALLOW_FILE_EDIT constant.

  8. Keep informed about the latest security issues affecting WordPress.

  9. Keep backups and test that they are working.

  10. Regularly scan for security issues with a WordPress Vulnerability Scanner.

Download the WPScan WordPress Security Commandments Poster

WPScan CLI Cheat Sheet Poster

  • PDF (best for printing)
  • PNG (higher quality for web)
  • JPG (less quality for web)