Sucuri Guides

Use our easy-to-understand, step-by-step guides to get the most from your website security.
Sucuri Guides Parent Page Hero Image
Phishing Attacks & How to Prevent Them - Guide Thumbnail

Phishing Attacks & How to 
Prevent Them

Phishing attacks can seriously harm individuals, corporations, and website owners. Learn about the common types and phish techniques, how to spot the signs of a phisher, and steps to prevent phishing.

How to Install an SSL Certificate

Learn how to activate SSL/HTTPS on your site. A tutorial on using Certbot and Let’s Encrypt to enable a free SSL certificate on your self-hosted website.

Website Malware Guide

Website malware can come in many different types and from many places. Learn what website malware is.

What is a DDoS Attack?

DDoS attacks disrupt a website’s availability, causing downtime for hours or days. Learn what happens in various types of DDoS attacks and how to protect against them.

How to Find & Remove WordPress Spam Posts

Spam posts and comments are not complicated malware infections, but they can severely damage a website’s reputation. Learn what they are and how to remove the infection from WordPress.

Sucuri Guides - Broken Access Control

What is Broken Access Control

Understand the risk of Broken Access Control on your website and learn how to prevent it with our comprehensive guide. We cover real-world examples of common access control vulnerabilities, how attackers exploit these weaknesses, and effective preventive measures to protect your site.

WordPress Security Guide

WordPress is the most popular website platform, making it a target. Learn basic WordPress security techniques and actionable steps to reduce the risk of a compromise.

What is a Web Application Firewall?

Web application firewalls (WAFs) are an important tool to keep your site safe from attacks. Learn how WAFs work, the different types available, and find the best firewall solution for your website.

Getting Started with Sucuri

A guide for new Sucuri customers illustrating how to activate the website firewall, server side monitoring, backups, and features of the Sucuri dashboard.

Sucuri’s Referral Program

Join our program and earn commission for referring Sucuri customers. Perfect for webmasters, developers, hosts, marketers, agencies, and freelancers.

Joomla Security Guide

Understand how to keep your Joomla website safe from hackers and use best practices to protect your visitors and content from compromise.

How to Clean a Hacked Joomla Site

Learn how to quickly fix, clean & secure a hacked Joomla! site by removing malware and protect against future attacks with this easy step-by-step guide.

How to Clean a Hacked Drupal Site

Learn how to manage a Drupal security incident including steps to scan your site, fix malicious code, and harden your site with recommended tools and actions.

Magento Security Guide

Learn basic security techniques and actionable steps that will help to improve your security posture and reduce the risk of a compromise.

How to Clean a Hacked Magento Site

Learn how to identify security issues and take steps to recover your traffic & conversions. Follow our guidance to eensure your Magento site is PCI compliant.

How to Stay Safe Against Scams

Welcome to our guide on identifying and avoiding every type of imaginable scam from social engineering to pharmaceuticals to parcel fraud.

What is Cross Site Request Forgery (CSRF)?

Learn what a CSRF attack is, how cross site request forgery works, examples, impacts, and the difference between CSRF and XSS. We also provide steps on how to prevent attacks to your environment.

WooCommerce Security Guide

WooCommerce Security Guide

Learn about WooCommerce security. We provide step by step instructions on how to secure your WooCommerce site to protect it from malware, hackers, and website vulnerabilities.

What is MageCart?

Learn what MageCart is, how MageCart works to infect an ecommerce website, and the different types of attacks. We also provide steps to detect and cleanup MageCart malware infections from your site.