Polyscripting is a technology that dynamically generates a brand new programming language forked from PHP that stops remote code injection.
By combining Polyscripted PHP with a transformer that converts WordPress (including all plugins) to this new programming language, we get a WordPress that is more secure than ever before.
Read more on this blog post: Polyscripting WordPress: using scrambled PHP to stop code injection attacks
But why wait? Let's try Polyscripting out right now!
Depending on whether you ran plain/stock WordPress or Polyscripted WordPress, you may have seen different results.
If you didn't try both, go ahead and restart the scenario and try it the other way.
Feel free to explore the Docker images and GitHub repositories used in this demo and use, contribute, and share!
Friends don't let friends get code injections.
The terminal on your right should be starting a routine MySQL Docker Container to connect our WordPress site.
When MySQL is ready, run either of the commands below to start WordPress in Plain Mode/Stock Mode (WordPress as it exists everywhere on the planet), or start it in Polyscripted Mode (A WordPress that is unique to this specific instance on your right.)
docker run --rm -d --name wordpress -v $PWD/wordpress:/wordpress --link mysql-host:mysql -p 80:80 polyverse/polyscripted-wordpress:b1805560d812c84e441b0ca0326c66bf5522c5ad
NOTE: This version takes JUST a bit longer to start because it's generating a new PHP on the fly, as well as transforming WordPress to it.
docker run --rm -d -e "MODE=polyscripted" --name wordpress -v $PWD/wordpress:/wordpress --link mysql-host:mysql -p 80:80 polyverse/polyscripted-wordpress:b1805560d812c84e441b0ca0326c66bf5522c5ad