WordPress Security Specialist - Rebuild Site From Backup On New Hosting (Cleanup + Secure Handover)
Budżet: $600.0
FIXED /
⭐ 5.00 (1)
Croatia
malware-removal, assessments-and-testing, source-code-scanning, information-security, wordpress, network-security, mysql, php
I'm rebuilding a WordPress content website on new infrastructure and need an experienced security specialist to clean it, migrate it, and hand it over fully secured.
Please read carefully - this is not a standard "scan my live site" job:
I no longer have access to the previous hosting. I have a full backup of the files and database, and control of the domain. There is no live site to log into.
The backup is infected - and it is the only backup I have (no clean copy exists).
I want the rebuilt site set up so that no previous administrators or third parties retain any access - to the site, its DNS/CDN, or any connected accounts. This is a clean security handover; I just want it done thoroughly.
Scope note: This engagement covers security recovery and functional restoration, not a visual redesign. Existing content, media, URL structure and required functionality should be preserved where safely possible. I am not asking for a new theme or a redesign.
What I need done:
Rebuild a clean site on new hosting from known-good sources - fresh WordPress core and fresh plugins/themes from official sources - migrating only the content/data (posts, media, URL structure, existing functionality), so nothing infected is carried over and the site works and looks as it did.
Remove all malware and confirm the rebuilt site is clean and not blacklisted (Google Safe Browsing clean). If the likely cause of the original infection is obvious from the files (e.g. an outdated plugin), flag it so we don't reintroduce it.
Point the domain to the new hosting and confirm the site is live and clean.
Audit and secure my existing owner-controlled Cloudflare/DNS, Google Search Console, Google Tag Manager and Google Analytics accounts. Remove unknown users, API tokens, verification methods, Workers, rules, tags, integrations and other access paths. Rotate relevant credentials and document everything found and changed. If cleaning a particular property or configuration is less safe or practical than replacing it, recommend and implement a replacement after approval.
Post-launch monitoring: watch server logs and outbound network activity for 1-2 weeks after launch for any sign of leftover backdoors "calling home" / beaconing, and alert me to anything suspicious.
Harden the site and hand over a clean, documented install with all credentials rotated to me.
I'll provide a copy of the backup and account access only after we agree terms - never the original, and not before vetting.
In your proposal, please include:
Examples/references of hacked-site recovery from a backup and migration to new hosting (not just live-site cleanups).
Your actual process and the tools you use - a few sentences, with real detail (not just plugin names).
Whether you offer a reinfection warranty, and for how long.
Your pricing (fixed or hourly) and a rough timeline.
To confirm you've read this posting in full, please begin your proposal with the word meridian. Proposals without it will be discarded.
Otwórz na Upwork