How to Report Attackers?

  • Resolved oliverkardos

    (@oliverkardos)


    2 years, 11 months ago

    Hi,

    Overall, WordFence is working great, however there are a few probing attempts that it misses to identify as a threat.

    I would love to have a REPORT feature, a button right next to the “Block” button. Maybe even a Block & Report button, so therefore I could directly contribute to the WordFence Security Network and perhaps ‘teach’ WordFence to better detects these attempts too.

    For instance there are these bots probing suspicious URLs. I mean, no one in their good mind should be attempting to access “/phpmyadmin” or “/internal”… These are 404s of course, but anyone who attempts to access such URLs deserves a permament ban in my opinion.

    As of now, I extended the list of keywords to warrant bans upon, but I would love to be able to report such guys.

    Thank you for considering.

    See screenshot: https://i.kek.sh/c8fWucFHYiu.png

    The page I need help with: [log in to see the link]

Viewing 1 replies (of 1 total)
  • Plugin Support wfpeter

    (@wfpeter)

    Hi @oliverkardos, thanks for getting in touch, detailing your issue and I’m happy to hear you’re enjoying Wordfence.

    I will gladly forward the idea of a “report” button to the team. We have channels where all customer development ideas are fully discussed and considered, although cannot promise here on the forums confirmation on their inclusion or specific delivery dates. Currently, if you have files that you consider may be part of a breach, they can be sent to samples @ wordfence . com to be analyzed.

    In reference to the visits, you can always check your Rate Limiting and/or Brute Force settings to increase time that blocks are implemented for, increase or decrease the strictness that causes blocks. However, Wordfence will generally do all of the important blocking for you so that you don’t have to. It may be tempting to permanently block these attempts when you see them but it’s generally an ineffective strategy and takes up your time, so please consult the following links for more information:

    https://www.wordfence.com/blog/2017/11/should-permantly-block-ips/
    https://www.wordfence.com/help/blocking/#ip-address

    I hope that all helps you out!

    Peter.

Viewing 1 replies (of 1 total)
  • The topic ‘How to Report Attackers?’ is closed to new replies.