What is Cross Site Request Forgery (CSRF)?
Learn what a CSRF attack is, how cross site request forgery works, examples, impacts, and the difference between CSRF and XSS. We also provide steps on how to prevent attacks to your environment.
Sucuri Guides
Use our easy-to-understand, step-by-step guides to get the most from your website security.
What is MageCart?
Learn what MageCart is, how MageCart works to infect an ecommerce website, and the different types of attacks. We also provide steps to detect and cleanup MageCart malware infections from your site.
Getting Started with Sucuri
A guide for new Sucuri customers illustrating how to activate the website firewall, server side monitoring, backups, and features of the Sucuri dashboard.
How to Fix the AnonymousFox Hack
The AnonymousFox hack comes in many forms, using a suite of hacker tools to take advantage of website vulnerabilitites.
OWASP Top Security Risks & Vulnerabilities 2021 Edition
The OWASP Top Ten List has been updated this year! We outline the changes and what this means for website security best practices
OWASP Top 10 Security Risks & Vulnerabilities 2020
Learn about the 2020 OWASP Top 10 vulnerabilities for website security and protect your site from security risks.
How to Remove McAfee SiteAdvisor Blocklist Warning
Is your website blocklisted? Learn how to remove website blocklist warnings from McAfee SiteAdvisor. Restore your website and reclaim visitors, revenue, and SEO rankings.
How to Clean a Hacked Magento Site
Learn how to identify security issues and take steps to recover your traffic & conversions. Follow our guidance to eensure your Magento site is PCI compliant.
How to Clean a Hacked Drupal Site
Learn how to manage a Drupal security incident including steps to scan your site, fix malicious code, and harden your site with recommended tools and actions.
Joomla Security Guide
Understand how to keep your Joomla website safe from hackers and use best practices to protect your visitors and content from compromise.
Drupal Security: How to Secure & Protect Drupal
Learn basic Drupal security techniques and actionable steps to reduce the risk of a compromise.
Sucuri’s Referral Program
Join our program and earn commission for referring Sucuri customers. Perfect for webmasters, developers, hosts, marketers, agencies, and freelancers.
How to Clean a Hacked Joomla Site
Learn how to quickly fix, clean & secure a hacked Joomla! site by removing malware and protect against future attacks with this easy step-by-step guide.
How to Position Website Security for Customers
A guide for new Sucuri customers illustrating how to activate the website firewall, server side monitoring, backups, and features of the Sucuri dashboard.
PCI DSS Compliance Requirements Guide & Checklist
Learn about the PCI DSS compliance requirements, risks and impacts of non-compliance, and ecommerce security with our PCI DSS compliance checklist.
Magento Security Guide
Learn basic security techniques and actionable steps that will help to improve your security posture and reduce the risk of a compromise.
Website Security Guide: Secure & Protect Your Website
Website security is a top priority for any website owner or webmaster. Learn how to secure and protect your site from hackers with our in-depth guide.
How to Find & Remove WordPress Spam Posts
Spam posts and comments are not complicated malware infections, but they can severely damage a website’s reputation. Learn what they are and how to remove the infection from WordPress.
How to Use the WordPress Security Plugin
The Sucuri team maintains a free WordPress security plugin. This guide will explain how to install, activate, and configure advanced settings in the plugin.
What to Do If Your Website Is Hacked & How to Fix It
Learn how to identify and clean a hacked website, including backdoors, server files and database entries. This guide covers detection, removal, and ongoing protection.
What is a Brute Force Attack & How to Prevent Them
Learn about brute force attacks and how you can prevent brute force and protect your website.
How to Remove Google Blocklist Warning
A guide to website security warnings and specific steps to fully restore your website before requesting a review from Google or any other blocklist authority.
What is SQL Injection & How to Prevent Attacks
Learn what SQL injection is and how it works. See the different types and examples of attacks, and find out how you can protect and clean your website from an SQL injection.
What is a Web Application Firewall?
Web application firewalls (WAFs) are an important tool to keep your site safe. See how WAFs work & find the best solution.
WordPress Security Guide
WordPress is the most popular website platform, making it a target. Learn basic WordPress security techniques and actionable steps to reduce the risk of a compromise.
Website Malware Guide
Website malware can come in many different types and from many places. Learn what website malware is.
What is a DDoS Attack? Types & Best Prevention Methods
DDoS attacks disrupt a website’s availability, causing downtime for hours or days. Learn what happens in various types of DDoS attacks and how to protect against them.
What is Cross-Site Scripting?
Cross-site scripting (XSS) occurs when hackers execute malicious JavaScript within a victim’s browser.
How to Install an SSL Certificate
Learn how to activate SSL/HTTPS on your site. A tutorial on using Certbot and Let’s Encrypt to enable a free SSL certificate on your self-hosted website.
How to Remove WordPress Malware & Clean a Hacked Site
WordPress is the most popular website platform, making it a target. Learn basic WordPress security techniques and actionable steps to reduce the risk of a compromise.
How to Stay Safe Against Scams
Welcome to our guide on identifying and avoiding every type of imaginable scam from social engineering to pharmaceuticals to parcel fraud.
