More Wordfence CLI updates

PDowney · PDowney · commit eb59bca5be8b · 2024-01-29T18:01:59.000-05:00
Added vuln-scan option and changed update option.
diff --git a/scripts/functions/security/wordfence-cli-malware-scan.sh b/scripts/functions/security/wordfence-cli-malware-scan.sh
@@ -25,20 +25,20 @@ fi
 # Start Main Script
 
 cd /var/www/sites
-printf "Please select the site you want to scan for vulnerabilities:\n"
+printf "Please select the site you want to scan for malware:\n"
 select d in *; do test -n "$d" && break; echo ">>> Invalid Selection"; done
-cd "$d" && echo "WordPress CLI is running. This scan may take a bit, standby for results."
+cd "$d" && echo "WordPress CLI malware scan is running. This scan may take a bit, standby for results."
 echo "When completed, the scan results will be located at:"
 echo "/home/EngineScript/wordfence-scan-results/wordfence-cli-scan-results.csv"
 
 # Scan
-wordfence malware-scan --images --output-path /home/EngineScript/wordfence-scan-results/wordfence-cli-scan-results.csv /var/www/sites/${d}/html
+wordfence malware-scan --images --output-path /home/EngineScript/wordfence-malware-scan-results/wordfence-cli-malware-scan-results.csv /var/www/sites/${d}/html
 
 # Ask user to acknowledge that the scan has completed before moving on
 echo ""
 echo ""
 echo "The scan results will be located at:"
-echo "/home/EngineScript/wordfence-scan-results/wordfence-cli-scan-results.csv"
+echo "/home/EngineScript/wordfence-scan-results/wordfence-cli-malware-scan-results.csv"
 echo ""
 read -n 1 -s -r -p "Press any key to continue"
 echo ""
diff --git a/scripts/functions/security/wordfence-cli-vuln-scan.sh b/scripts/functions/security/wordfence-cli-vuln-scan.sh
@@ -0,0 +1,45 @@
+#!/usr/bin/env bash
+#----------------------------------------------------------------------------
+# EngineScript - A High-Performance WordPress Server Built on Ubuntu and Cloudflare
+#----------------------------------------------------------------------------
+# Website:      https://EngineScript.com
+# GitHub:       https://github.com/Enginescript/EngineScript
+# Company:      VisiStruct / EngineScript
+# License:      GPL v3.0
+# OS:           Ubuntu 22.04 (jammy)
+#----------------------------------------------------------------------------
+
+# EngineScript Variables
+source /usr/local/bin/enginescript/enginescript-variables.txt
+source /home/EngineScript/enginescript-install-options.txt
+
+# Check current user's ID. If user is not 0 (root), exit.
+if [ "${EUID}" != 0 ];
+  then
+    echo "${BOLD}ALERT:${NORMAL}"
+    echo "EngineScript should be executed as the root user."
+    exit
+fi
+
+#----------------------------------------------------------------------------
+# Start Main Script
+
+cd /var/www/sites
+printf "Please select the site you want to scan for vulnerabilities:\n"
+select d in *; do test -n "$d" && break; echo ">>> Invalid Selection"; done
+cd "$d" && echo "WordPress CLI vulnerability scan is running. This scan may take a bit, standby for results."
+echo "When completed, the scan results will be located at:"
+echo "/home/EngineScript/wordfence-scan-results/wordfence-cli-vulnerability-scan-results.csv"
+
+# Scan
+wordfence vuln-scan --images --output-path /home/EngineScript/wordfence-scan-results/wordfence-cli-vulnerability-scan-results.csv /var/www/sites/${d}/html
+
+# Ask user to acknowledge that the scan has completed before moving on
+echo ""
+echo ""
+echo "The scan results will be located at:"
+echo "/home/EngineScript/wordfence-scan-results/wordfence-cli-vulnerability-scan-results.csv"
+echo ""
+read -n 1 -s -r -p "Press any key to continue"
+echo ""
+echo ""
diff --git a/scripts/menu/security-tools-menu.sh b/scripts/menu/security-tools-menu.sh
@@ -32,7 +32,7 @@ while true
     echo ""
     echo ""
     PS3='Please enter your choice: '
-    secoptions=("10up WP-CLI Vulnerability Scan" "Find PHP Files in Uploads Directory" "PHP Malware Finder" "Wordfence CLI Malware Scan" "WP-CLI Doctor" "WPScan Vulnerability Scan" "Exit Security Tools")
+    secoptions=("10up WP-CLI Vulnerability Scan" "Find PHP Files in Uploads Directory" "PHP Malware Finder" "Wordfence CLI Malware Scan" "Wordfence CLI Vulnerability Scan" "WP-CLI Doctor" "WPScan Vulnerability Scan" "Exit Security Tools")
     select secopt in "${secoptions[@]}"
     do
       case $secopt in
@@ -49,7 +49,11 @@ while true
           break
           ;;
         "Wordfence CLI Malware Scan")
-          /usr/local/bin/enginescript/scripts/functions/security/wordfence-cli.sh
+          /usr/local/bin/enginescript/scripts/functions/security/wordfence-cli-malware-scan.sh
+          break
+          ;;
+        "Wordfence CLI Vulnerability Scan")
+          /usr/local/bin/enginescript/scripts/functions/security/wordfence-cli-vuln-scan.sh
           break
           ;;
         "WP-CLI Doctor")
diff --git a/scripts/update/wordfence-cli-update.sh b/scripts/update/wordfence-cli-update.sh
@@ -28,8 +28,6 @@ fi
 
 # Update Wordfence CLI
 
-rm -rf /usr/local/src/Wordfence-CLI/wordfence
 cd /usr/src
-wget -O /usr/src/wordfence_${WORDFENCE_CLI_VER}_amd64_linux_exec.tar.gz https://github.com/wordfence/wordfence-cli/releases/download/v${WORDFENCE_CLI_VER}/wordfence_${WORDFENCE_CLI_VER}_amd64_linux_exec.tar.gz --no-check-certificate
-tar -xvf wordfence_${WORDFENCE_CLI_VER}_amd64_linux_exec.tar.gz
-mv /usr/src/wordfence /usr/local/src/Wordfence-CLI/wordfence
+wget -O /usr/src https://github.com/wordfence/wordfence-cli/releases/latest/download/wordfence.deb --no-check-certificate
+sudo apt install /usr/src/wordfence.deb -y
