Switch to English version?

Yes

Переключитись на українську версію?

Так

Переключиться на русскую версию?

Да

Przełączyć się na polską wersję?

Tak

Login
Registration
- Welcome to Freelancehunt
  
  Work risk-free, saving time and money
  
  Login Registration

Post your project for free and start receiving proposals from freelancers within minutes after publication!

Need a programmer to clean the website from viruses and complete hardening (Docker + WordPress)

Cybersecurity & Data Protection, DevOps

3 out of 3

project expired

publication
open for proposals
project expired

Project translated automatically. Log in or register, to view the original

Website on WordPress. Signs of infection/hacking and constant brute force attempts (including on xmlrpc.php) have been detected. The previous team performed diagnostics and provided recommendations, but could not resolve the issues. An expert is needed who:

will heal the website from malicious code/malware and the consequences of hacking,
will perform comprehensive hardening of the server, Docker environment, and WordPress,
will set up monitoring, alerts, and backups.

In the end, an understanding of why the infection occurred with evidence for the previous programmers and a solution to the virus problem is needed.

Detailed technical specifications: https://docs.google.com/document/d/10M4KtkPQA6ViEm4J42_JKzPObU9PjNKnGaI2LuAOOSs/edit?tab=t.0

Proposals 7
Discussion 1

by default date online rating cost completion time

16 USD

Anton V.

6 1

16 USD

Ready to help! Experience with Docker and WordPress, I guarantee complete cleanup and enhanced security for the site. Please specify the project timeline and budget.

Show original

Translate

26 September 2025, 18:49

156 USD

Mar'yan-Bogdan K.

112 6

156 USD

I have experience in solving similar problems and am ready to complete the task considering all requirements.
Proposal:
Cleaning from malicious code:
I will conduct a deep audit of the site (files, database, logs) to identify malicious code, shells, and traces of hacking.

I will remove malware, fix corrupted files, and check the integrity of the WordPress core, themes, and plugins.

I will analyze the causes of infection (for example, vulnerabilities in plugins, weak passwords, vulnerabilities in xmlrpc.php) and provide a report with evidence for the previous team.

… Server, Docker, and WordPress hardening:
I will set up server protection: OS updates, firewall configuration (for example, iptables or UFW), restricting access to critical files (xmlrpc.php, wp-config.php).

I will optimize the Docker environment: container isolation, privilege restrictions, image updates.

WordPress protection: disabling xmlrpc.php, limiting login attempts, setting up 2FA, updating all components, using secure plugins (for example, Wordfence or iThemes Security).

Monitoring and backup:
I will set up security monitoring using tools like Wazuh or similar to detect suspicious activity.

I will set up alerts via email/SMS for notifications about brute force attempts or file changes.

I will configure automatic backups (files + database) to a remote storage (for example, AWS S3 or Google Cloud) with a regular schedule.

Reporting:
I will provide a detailed report on the causes of infection, identified vulnerabilities, and actions taken.

I will provide recommendations to prevent recurring incidents.