Hi there!
Thanks for the awesome plugin.
I've just found a number of hidden php files on a malware infected client site - hidden in WP core and a couple of plugins.
Running the WordFence scans regularly with the option to compare against the WP repository and files outside of WP have not picked these up.
Would someone please confirm that the WordFence scan against repos only checks files that match those in the official repo but not any additional files in the Core / Plugin / Theme folders?
It would be immensely useful if the scan alerted to additional files in WP Core, plugins and themes that are not in the official repos (i.e.: hidden malware scripts / backdoors etc). A notification that says "hey, we found this file in plugin folder xxxx/ but it doesn't exist in the official repository".
Thank you!