Added Wordfence CLI Remediate

PDowney · PDowney · commit 3d68cd6a1a27 · 2024-01-31T00:14:29.000-05:00
diff --git a/enginescript-variables.txt b/enginescript-variables.txt
@@ -7,7 +7,7 @@
 #-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-
 
 # EngineScript Version
-VARIABLES_DATE="JANUARY 26TH 2024"
+VARIABLES_DATE="JANUARY 30TH 2024"
 
 # Software Versions
 MARIADB_VER="10.11"
@@ -22,6 +22,9 @@ PNGOUT_VER="20200115"
 WORDFENCE_CLI_VER="3.0.1"
 ZLIB_VER="1.3"
 
+# No Longer Used
+WORDFENCE_CLI_VER="3.0.1"
+
 # Old Software Versions
 OLDPHP="8.0"
 OLDPCRE="8.45"
diff --git a/scripts/functions/cron/daily-database-backup.sh b/scripts/functions/cron/daily-database-backup.sh
@@ -35,6 +35,7 @@ NOW=$(date +%m-%d-%Y-%H)
 
 # Filenames
 DATABASE_FILE="${NOW}-database.sql";
+FULLWPFILES="${NOW}-wordpress-files.gz";
 NGINX_FILE="${NOW}-nginx-vhost.conf.gz";
 PHP_FILE="${NOW}-php.tar.gz";
 SSL_FILE="${NOW}-ssl-keys.gz";
diff --git a/scripts/functions/cron/hourly-database-backup.sh b/scripts/functions/cron/hourly-database-backup.sh
@@ -35,6 +35,7 @@ NOW=$(date +%m-%d-%Y-%H)
 
 # Filenames
 DATABASE_FILE="${NOW}-database.sql";
+FULLWPFILES="${NOW}-wordpress-files.gz";
 NGINX_FILE="${NOW}-nginx-vhost.conf.gz";
 PHP_FILE="${NOW}-php.tar.gz";
 SSL_FILE="${NOW}-ssl-keys.gz";
diff --git a/scripts/functions/cron/nginx-backup.sh b/scripts/functions/cron/nginx-backup.sh
@@ -29,6 +29,7 @@ NOW=$(date +%m-%d-%Y-%H)
 
 # Filenames
 DATABASE_FILE="${NOW}-database.sql";
+FULLWPFILES="${NOW}-wordpress-files.gz";
 NGINX_FILE="${NOW}-nginx-vhost.conf.gz";
 PHP_FILE="${NOW}-php.tar.gz";
 SSL_FILE="${NOW}-ssl-keys.gz";
diff --git a/scripts/functions/cron/php-backup.sh b/scripts/functions/cron/php-backup.sh
@@ -29,6 +29,7 @@ NOW=$(date +%m-%d-%Y-%H)
 
 # Filenames
 DATABASE_FILE="${NOW}-database.sql";
+FULLWPFILES="${NOW}-wordpress-files.gz";
 NGINX_FILE="${NOW}-nginx-vhost.conf.gz";
 PHP_FILE="${NOW}-php.tar.gz";
 SSL_FILE="${NOW}-ssl-keys.gz";
diff --git a/scripts/functions/cron/weekly-wp-content-backup.sh b/scripts/functions/cron/weekly-wp-content-backup.sh
@@ -35,6 +35,7 @@ NOW=$(date +%m-%d-%Y-%H)
 
 # Filenames
 DATABASE_FILE="${NOW}-database.sql";
+FULLWPFILES="${NOW}-wordpress-files.gz";
 NGINX_FILE="${NOW}-nginx-vhost.conf.gz";
 PHP_FILE="${NOW}-php.tar.gz";
 SSL_FILE="${NOW}-ssl-keys.gz";
diff --git a/scripts/functions/security/wordfence-cli-remediate.sh b/scripts/functions/security/wordfence-cli-remediate.sh
@@ -0,0 +1,78 @@
+#!/usr/bin/env bash
+#----------------------------------------------------------------------------
+# EngineScript - A High-Performance WordPress Server Built on Ubuntu and Cloudflare
+#----------------------------------------------------------------------------
+# Website:      https://EngineScript.com
+# GitHub:       https://github.com/Enginescript/EngineScript
+# Company:      VisiStruct / EngineScript
+# License:      GPL v3.0
+# OS:           Ubuntu 22.04 (jammy)
+#----------------------------------------------------------------------------
+
+# EngineScript Variables
+source /usr/local/bin/enginescript/enginescript-variables.txt
+source /home/EngineScript/enginescript-install-options.txt
+
+# Check current user's ID. If user is not 0 (root), exit.
+if [ "${EUID}" != 0 ];
+  then
+    echo "${BOLD}ALERT:${NORMAL}"
+    echo "EngineScript should be executed as the root user."
+    exit
+fi
+
+#----------------------------------------------------------------------------
+# Start Main Script
+
+# Date
+NOW=$(date +%m-%d-%Y-%H)
+
+# Filenames
+DATABASE_FILE="${NOW}-database.sql";
+FULLWPFILES="${NOW}-wordpress-files.gz";
+NGINX_FILE="${NOW}-nginx-vhost.conf.gz";
+PHP_FILE="${NOW}-php.tar.gz";
+SSL_FILE="${NOW}-ssl-keys.gz";
+UPLOADS_FILE="${NOW}-uploads.tar.gz";
+VHOST_FILE="${NOW}-nginx-vhost.conf.gz";
+WPCONFIG_FILE="${NOW}-wp-config.php.gz";
+WPCONTENT_FILE="${NOW}-wp-content.gz";
+
+# Select site
+cd /var/www/sites
+printf "Please select the site you want to remove infected files on:\n"
+select d in *; do test -n "$d" && break; echo ">>> Invalid Selection"; done
+cd "$d" && echo "Wordfence CLI will attempt to remediate infections of known files by reverting them back to their original version."
+echo -e "\nEngineScript will now create a new database and full file backup for your site.
+\n\nIf something goes wrong, the backup files can be found in in:
+\n/home/EngineScript/site-backups/${d}/wordfence-cli-remediate-backup/${NOW}\n\n"
+
+# Make backup directory
+mkdir -p /home/EngineScript/site-backups/${d}/wordfence-cli-remediate-backup/${NOW}
+
+# Export database
+wp db export --path=/var/www/sites/${d}/html "/home/EngineScript/site-backups/${d}/wordfence-cli-remediate-backup/${NOW}/${DATABASE_FILE}" --add-drop-table --allow-root
+
+# Export files locally
+#cd /var/www/sites/${d}/html
+tar -zcvf "/home/EngineScript/site-backups/${d}/wordfence-cli-remediate-backup/${NOW}/${FULLWPFILES}" html
+
+echo -e "\nBackup completed.
+\n\nIf something goes wrong, the backup files can be found in in:
+\n/home/EngineScript/site-backups/${d}/wordfence-cli-remediate-backup/${NOW}\n\n"
+
+# Remediate
+echo -e "\nStarting the remediate process...
+\n\nThis will take a while.\n\n"
+sleep 3
+
+wordfence remediate /var/www/sites/${d}/html
+
+# Ask user to acknowledge that the scan has completed before moving on
+echo ""
+echo ""
+echo "The remediate process has been completed."
+echo ""
+read -n 1 -s -r -p "Press any key to continue"
+echo ""
+echo ""
diff --git a/scripts/install/vhost/vhost-backup.sh b/scripts/install/vhost/vhost-backup.sh
@@ -32,6 +32,7 @@ NOW=$(date +%m-%d-%Y-%H)
 
 # Filenames
 DATABASE_FILE="${NOW}-database.sql";
+FULLWPFILES="${NOW}-wordpress-files.gz";
 NGINX_FILE="${NOW}-nginx-vhost.conf.gz";
 PHP_FILE="${NOW}-php.tar.gz";
 SSL_FILE="${NOW}-ssl-keys.gz";
diff --git a/scripts/install/vhost/vhost-install.sh b/scripts/install/vhost/vhost-install.sh
@@ -386,6 +386,7 @@ NOW=$(date +%m-%d-%Y-%H)
 
 # Filenames
 DATABASE_FILE="${NOW}-database.sql";
+FULLWPFILES="${NOW}-wordpress-files.gz";
 NGINX_FILE="${NOW}-nginx-vhost.conf.gz";
 PHP_FILE="${NOW}-php.tar.gz";
 SSL_FILE="${NOW}-ssl-keys.gz";
diff --git a/scripts/menu/security-tools-menu.sh b/scripts/menu/security-tools-menu.sh
@@ -32,7 +32,7 @@ while true
     echo ""
     echo ""
     PS3='Please enter your choice: '
-    secoptions=("10up WP-CLI Vulnerability Scan" "Find PHP Files in Uploads Directory" "PHP Malware Finder" "Wordfence CLI Malware Scan" "Wordfence CLI Vulnerability Scan" "WP-CLI Doctor" "WPScan Vulnerability Scan" "Exit Security Tools")
+    secoptions=("10up WP-CLI Vulnerability Scan" "Find PHP Files in Uploads Directory" "PHP Malware Finder" "Wordfence CLI Malware Scan" "Wordfence CLI Remediate Infected Files (After Malware Scan)" "Wordfence CLI Vulnerability Scan" "WP-CLI Doctor" "WPScan Vulnerability Scan" "Exit Security Tools")
     select secopt in "${secoptions[@]}"
     do
       case $secopt in
@@ -52,6 +52,10 @@ while true
           /usr/local/bin/enginescript/scripts/functions/security/wordfence-cli-malware-scan.sh
           break
           ;;
+        "Wordfence CLI Remediate Infected Files (After Malware Scan)")
+          /usr/local/bin/enginescript/scripts/functions/security/wordfence-cli-remediate.sh
+          break
+          ;;
         "Wordfence CLI Vulnerability Scan")
           /usr/local/bin/enginescript/scripts/functions/security/wordfence-cli-vuln-scan.sh
           break
