File Manager

X7ROOT File Manager

Current Path: /home/oakwood/public_html/wp-content/plugins/wordfence/lib

home / oakwood / public_html / wp-content / plugins / wordfence / lib /

ðŸ“ ..
ðŸ“„ .htaccess(354 B)
ðŸ“ Diff
ðŸ“„ Diff.php(5.63 KB)
ðŸ“„ GeoLite2-Country.mmdb(7.46 MB)
ðŸ“„ IPTraf.php(1.17 KB)
ðŸ“„ IPTrafList.php(2.98 KB)
ðŸ“„ WFLSPHP52Compatability.php(1.27 KB)
ðŸ“ audit-log
ðŸ“„ compat.php(425 B)
ðŸ“ dashboard
ðŸ“„ diffResult.php(2.81 KB)
ðŸ“„ email_genericAlert.php(1.39 KB)
ðŸ“„ email_newIssues.php(8.82 KB)
ðŸ“„ email_unlockRequest.php(2.34 KB)
ðŸ“„ email_unsubscribeRequest.php(1.05 KB)
ðŸ“„ flags.php(6.62 KB)
ðŸ“„ live_activity.php(580 B)
ðŸ“„ menu_dashboard.php(28 KB)
ðŸ“„ menu_dashboard_options.php(15.21 KB)
ðŸ“„ menu_firewall.php(2.12 KB)
ðŸ“„ menu_firewall_blocking.php(10.25 KB)
ðŸ“„ menu_firewall_blocking_options.php(4.63 KB)
ðŸ“„ menu_firewall_waf.php(19.96 KB)
ðŸ“„ menu_firewall_waf_options.php(11.09 KB)
ðŸ“„ menu_install.php(1.73 KB)
ðŸ“„ menu_options.php(24.7 KB)
ðŸ“„ menu_scanner.php(21.53 KB)
ðŸ“„ menu_scanner_credentials.php(2.77 KB)
ðŸ“„ menu_scanner_options.php(8.41 KB)
ðŸ“„ menu_support.php(17.82 KB)
ðŸ“„ menu_tools.php(1.49 KB)
ðŸ“„ menu_tools_auditlog.php(16.43 KB)
ðŸ“„ menu_tools_diagnostic.php(49.35 KB)
ðŸ“„ menu_tools_importExport.php(1.28 KB)
ðŸ“„ menu_tools_livetraffic.php(39.43 KB)
ðŸ“„ menu_tools_twoFactor.php(19.6 KB)
ðŸ“„ menu_tools_whois.php(4.61 KB)
ðŸ“„ menu_wordfence_central.php(9.66 KB)
ðŸ“„ noc1.key(1.64 KB)
ðŸ“ rest-api
ðŸ“„ sodium_compat_fast.php(185 B)
ðŸ“„ sysinfo.php(1.47 KB)
ðŸ“„ viewFullActivityLog.php(1.47 KB)
ðŸ“„ wf503.php(9.63 KB)
ðŸ“„ wfAPI.php(10.1 KB)
ðŸ“„ wfActivityReport.php(20.45 KB)
ðŸ“„ wfAdminNoticeQueue.php(5.2 KB)
ðŸ“„ wfAlerts.php(7.37 KB)
ðŸ“„ wfArray.php(1.77 KB)
ðŸ“„ wfAuditLog.php(47.13 KB)
ðŸ“„ wfBrowscap.php(3.9 KB)
ðŸ“„ wfBrowscapCache.php(256.83 KB)
ðŸ“„ wfBulkCountries.php(9.77 KB)
ðŸ“„ wfCache.php(6.02 KB)
ðŸ“„ wfCentralAPI.php(25.8 KB)
ðŸ“„ wfConfig.php(122.49 KB)
ðŸ“„ wfCrawl.php(6.56 KB)
ðŸ“„ wfCredentialsController.php(5.16 KB)
ðŸ“„ wfCrypt.php(4.05 KB)
ðŸ“„ wfCurlInterceptor.php(1.02 KB)
ðŸ“„ wfDB.php(11.49 KB)
ðŸ“„ wfDashboard.php(8.2 KB)
ðŸ“„ wfDateLocalization.php(352.13 KB)
ðŸ“„ wfDeactivationOption.php(2.13 KB)
ðŸ“„ wfDiagnostic.php(66.87 KB)
ðŸ“„ wfDict.php(738 B)
ðŸ“„ wfDirectoryIterator.php(1.89 KB)
ðŸ“„ wfFileUtils.php(2.72 KB)
ðŸ“„ wfHelperBin.php(1.97 KB)
ðŸ“„ wfHelperString.php(2.13 KB)
ðŸ“„ wfIPWhitelist.php(1.56 KB)
ðŸ“„ wfImportExportController.php(3.23 KB)
ðŸ“„ wfInaccessibleDirectoryException.php(303 B)
ðŸ“„ wfInvalidPathException.php(266 B)
ðŸ“„ wfIpLocation.php(1.73 KB)
ðŸ“„ wfIpLocator.php(2.74 KB)
ðŸ“„ wfIssues.php(27.91 KB)
ðŸ“„ wfJWT.php(5.33 KB)
ðŸ“„ wfLicense.php(10.43 KB)
ðŸ“„ wfLockedOut.php(9.73 KB)
ðŸ“„ wfLog.php(57.11 KB)
ðŸ“„ wfMD5BloomFilter.php(5.2 KB)
ðŸ“„ wfModuleController.php(754 B)
ðŸ“„ wfNotification.php(6.41 KB)
ðŸ“„ wfOnboardingController.php(9.22 KB)
ðŸ“„ wfPersistenceController.php(819 B)
ðŸ“„ wfRESTAPI.php(377 B)
ðŸ“„ wfScan.php(15.92 KB)
ðŸ“„ wfScanEngine.php(133.6 KB)
ðŸ“„ wfScanEntrypoint.php(1.04 KB)
ðŸ“„ wfScanFile.php(1.01 KB)
ðŸ“„ wfScanFileLink.php(403 B)
ðŸ“„ wfScanFileListItem.php(408 B)
ðŸ“„ wfScanFileProperties.php(1.07 KB)
ðŸ“„ wfScanMonitor.php(4.05 KB)
ðŸ“„ wfScanPath.php(1.77 KB)
ðŸ“„ wfSchema.php(10.91 KB)
ðŸ“„ wfStyle.php(1.21 KB)
ðŸ“„ wfSupportController.php(24.18 KB)
ðŸ“„ wfUnlockMsg.php(1.14 KB)
ðŸ“„ wfUpdateCheck.php(27.23 KB)
ðŸ“„ wfUtils.php(124.11 KB)
ðŸ“„ wfVersionCheckController.php(19.27 KB)
ðŸ“„ wfVersionSupport.php(535 B)
ðŸ“„ wfView.php(2.22 KB)
ðŸ“„ wfViewResult.php(1.42 KB)
ðŸ“„ wfWebsite.php(1.75 KB)
ðŸ“„ wordfenceClass.php(436.65 KB)
ðŸ“„ wordfenceConstants.php(3.56 KB)
ðŸ“„ wordfenceHash.php(42.7 KB)
ðŸ“„ wordfenceScanner.php(30.47 KB)
ðŸ“„ wordfenceURLHoover.php(18.36 KB)

Editing: wfCrypt.php

<?php
class wfCrypt {
	private static function getPubKey(){
		#Command to generate our keypair was: openssl req -x509 -newkey rsa:2048 -keyout mycert.key -out mycert.pem -nodes -subj "/C=US/ST=Washington/L=Seattle/O=Wordfence/OU=IT/CN=wordfence.com" -days 7300
		#This is a 2048 bit key using SHA256 with RSA. 
		$key = <<<ENDKEY
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
ENDKEY;
		return $key;
	}
	public static function makeSymHexKey($length){
		return bin2hex(wfWAFUtils::random_bytes($length / 2));
	}
	public static function pubCrypt($symKey){ //encrypts a symmetric key and returns it base64
		openssl_public_encrypt($symKey, $encSymKey, self::getPubKey(), OPENSSL_PKCS1_OAEP_PADDING); //The default OPENSSL_PKCS1_PADDING is deprecated.
		return base64_encode($encSymKey);
	}
	
	/**
	 * Returns the payload symmetrically encrypted and signed by the noc1 public key. The payload is converted to JSON, 
	 * encrypted using a randomly-generated symmetric key, and then hashed and signed with the noc1 public key.
	 * 
	 * This is NOT cryptographically secure for verifying that this server sent or was aware of the context of the 
	 * message, rather it is intended to be used in tandem with verification via another method (e.g., a call that 
	 * validates due to the site URL matching the license key or noc1 does a call itself to the server to retrieve the 
	 * encrypted payload). It is solely a means to provide data to noc1 that only it can read.
	 * 
	 * @param array $payload
	 * @return array The encrypted and signed payload in the form array('message' => <encrypted message in hex>, 'signature' => <signature in hex>).
	 */
	public static function noc1_encrypt($payload) {
		$payloadJSON = json_encode($payload);
		
		$keyData = file_get_contents(dirname(__FILE__) . '/noc1.key');
		$key = @openssl_get_publickey($keyData);
		if ($key !== false) {
			$symmetricKey = wfWAFUtils::random_bytes(32);
			$iv = wfWAFUtils::random_bytes(16);
			$encrypted = @openssl_encrypt($payloadJSON, 'aes-256-cbc', $symmetricKey, OPENSSL_RAW_DATA, $iv);
			if ($encrypted !== false) {
				$success = openssl_public_encrypt($symmetricKey, $symmetricKeyEncrypted, $key, OPENSSL_PKCS1_OAEP_PADDING);
				if ($success) {
					$message = $iv . $symmetricKeyEncrypted . $encrypted;
					$signatureRaw = hash('sha256', $message, true);
					$success = openssl_public_encrypt($signatureRaw, $signature, $key, OPENSSL_PKCS1_OAEP_PADDING);
					if ($success) {
						$package = array('message' => bin2hex($message), 'signature' => bin2hex($signature));
						return $package;
					}
				}
			}
		}
		return array();
	}
	
	/**
	 * Returns a SHA256 HMAC for $payload using the local long key.
	 * 
	 * @param $payload
	 * @return false|string
	 */
	public static function local_sign($payload) {
		return hash_hmac('sha256', $payload, wfConfig::get('longEncKey'));
	}
}

X7ROOT File Manager

Editing: wfCrypt.php

Upload File

Create Folder