Title: SPM by Marwan Author: Marwan Hatem Published: 22 de maig de 2026 Last modified: 6 de juny de 2026 --- Cerca extensions ![](https://ps.w.org/spm-by-marwan/assets/banner-772x250.png?rev=3543141) ![](https://ps.w.org/spm-by-marwan/assets/icon-256x256.png?rev=3543211) # SPM by Marwan Per [Marwan Hatem](https://profiles.wordpress.org/marwanhatem/) [Baixa](https://downloads.wordpress.org/plugin/spm-by-marwan.1.2.7.zip) * [Detalls](https://ca.wordpress.org/plugins/spm-by-marwan/#description) * [Ressenyes](https://ca.wordpress.org/plugins/spm-by-marwan/#reviews) * [Instal·lació](https://ca.wordpress.org/plugins/spm-by-marwan/#installation) * [Desenvolupament](https://ca.wordpress.org/plugins/spm-by-marwan/#developers) [Suport](https://wordpress.org/support/plugin/spm-by-marwan/) ## Descripció SPM by Marwan is a professional-grade diagnostics and intelligence platform designed for WordPress administrators and developers. It provides deep visibility into your WordPress ecosystem, offering real-time monitoring, security auditing, and performance profiling to ensure your site remains fast, secure, and stable. ### The Problem Managing a modern WordPress ecosystem is inherently complex. Site owners and developers frequently struggle with: * **Slow Extensions:** Identifying which specific extension is degrading page load times or consuming excessive server resources. * **Hidden PHP Errors:** Unseen warnings and fatal errors that silently break functionality or create vulnerabilities. * **Security Risks:** Unmaintained, abandoned, or vulnerable code exposing the site to potential exploits. * **Trust Issues:** Uncertainty regarding an extension’s origin, development standards, and code quality. * **Update Degradation:** Performance regressions and unexpected conflicts introduced immediately after updates. ### Core Features * **Real-Time Monitoring Engine:** Actively tracks resource consumption, database queries, and execution times for every active extension. Identifies performance bottlenecks as they happen, preventing systemic slowdowns. * **Performance Diagnostics:** Deep-dive profiling for individual extensions. Analyzes memory footprint and script execution to provide actionable intelligence on resource utilization. * **Security & Integrity Scanner:** Proactively audits installed extensions against known vulnerability databases, flags high-risk code patterns, and verifies WordPress core files against official checksums to detect malicious tampering. * **Japanese SEO Spam Auto-Fix Engine:** A specialized, deep-scanning engine designed to detect and eradicate the notorious «Japanese Keyword Hack». Features a one- click Auto-Fix that intelligently restores or quarantines hijacked posts to protect your Google ranking without destroying your original content. ### Advanced Security: Defeating the Japanese SEO Keyword Hack The «Japanese Keyword Hack» is a devastating black-hat SEO attack where hackers exploit vulnerabilities in outdated plugins to inject massive amounts of auto-generated Japanese text and malicious links into your database and core files. This causes Google to flag your site as «hacked,» instantly destroying your SEO ranking. SPM by Marwan includes a highly specialized engine specifically built to defeat this attack: * **Deep Database Scanning:** Actively crawls your `wp_posts` and `wp_options` tables, utilizing advanced Unicode block detection to find injected Japanese Hiragana, Katakana, and Kanji spam hidden within your legitimate content. * **Intelligent Auto-Fix (No Data Loss):** When you click «Auto-Fix», the scanner doesn’t just blindly delete your hijacked posts. Instead, it scans the WordPress Revision History for each infected post. It finds the last «clean» version of your post (before the hacker touched it) and seamlessly restores it. * **Fail-Safe Quarantining:** If a post was created entirely by the hacker (meaning no clean revision exists), or if you have revisions disabled, the engine will safely quarantine the post by setting its status to **Draft**. This instantly removes the spam from the public internet—stopping the SEO bleed—while preserving the draft in your admin panel so you don’t lose any data. * **Orphaned File Detection:** Scans your entire server structure to locate and quarantine backdoor PHP scripts that hackers leave behind to reinfect your site after you clean it. * **Core Checksum Verification:** Verifies every single WordPress core file against the official WordPress.org cryptographic checksums to detect hidden cloaking scripts. * **Trust Verification:** Evaluates code based on developer reputation, update frequency, repository standing, and code integrity. Establishes a trust score to help you make informed decisions about your technology stack. * **Historical Analytics:** Maintains a robust ledger of performance and security metrics over time. Visualizes trends to help you understand the long-term impact of specific extensions and updates. * **Action Layer (Scan / Safe Mode / Reporting):** Provides immediate remediation tools. Execute targeted scans, isolate problematic extensions using Safe Mode, and generate comprehensive diagnostics reports. ### External Services This plugin utilizes the WordPress.org Plugins API (https://api.wordpress.org) to verify plugin licenses and retrieve information about installed plugins. * **What data is sent:** The names and slugs of your active plugins are sent in the API request.*** When it is sent:** Data is sent when the plugin performs a scheduled background scan or when you manually click «Deep Scan» or «Refresh Now» on the dashboard. *** Why it is used:** To verify that the plugins running on your site are authentic, properly licensed, and available on the official WordPress.org directory, which enhances your site’s security and trust metrics. For more information, please refer to the [WordPress.org Privacy Policy](https://wordpress.org/about/privacy/). ## Captures [⌊Dashboard Overview displaying system health and critical alerts.⌉⌊Dashboard Overview displaying system health and critical alerts.⌉[ Dashboard Overview displaying system health and critical alerts. [⌊Granular performance breakdown of individual extensions.⌉⌊Granular performance breakdown of individual extensions.⌉[ Granular performance breakdown of individual extensions. [⌊Detailed vulnerability reporting and security recommendations.⌉⌊Detailed vulnerability reporting and security recommendations.⌉[ Detailed vulnerability reporting and security recommendations. [⌊Long-term performance trends and update impact visualization.⌉⌊Long-term performance trends and update impact visualization.⌉[ Long-term performance trends and update impact visualization. [[ [[ [[ [[ [[ ## Instal·lació 1. Upload the `spm-by-marwan` folder to your `/wp-content/plugins/` directory. 2. Navigate to the **Plugins** menu in WordPress and activate «SPM by Marwan». 3. Locate the new **Plugin Monitor** dashboard in your WordPress admin menu to begin profiling your site. ## PMF ### Does the monitor degrade my site’s performance? No. SPM by Marwan is built on a robust, scalable foundation designed for minimal overhead. It uses lightweight hooks into the WordPress core to gather metrics without degrading performance, and asynchronous analysis modules that run non-blocking audits. ### Can I use the Security Scanner alongside other security plugins (Wordfence, Sucuri, Solid Security)? Yes, absolutely. The Japanese SEO Spam Scanner, Core Checksum Verification, and Orphaned File detectors operate completely safely and independently. They do not hook into your site’s firewall, traffic routing, or login flows, meaning there is zero chance of a conflict. You can—and should—run SPM as a highly specialized companion scanner alongside your primary security firewall. ## Ressenyes No hi ha ressenyes per a aquesta extensió. ## Col·laboradors i desenvolupadors «SPM by Marwan» és programari de codi obert. La següent gent ha col·laborat en aquesta extensió. Col·laboradors * [ Marwan Hatem ](https://profiles.wordpress.org/marwanhatem/) [Traduïu «SPM by Marwan» a la vostra llengua.](https://translate.wordpress.org/projects/wp-plugins/spm-by-marwan) ### Interessats en el desenvolupament? [Navegueu pel codi](https://plugins.trac.wordpress.org/browser/spm-by-marwan/), baixeu-vos el [repositori SVN](https://plugins.svn.wordpress.org/spm-by-marwan/), o subscriviu-vos al [registre de desenvolupament](https://plugins.trac.wordpress.org/log/spm-by-marwan/) per [fisl de subscripció RSS](https://plugins.trac.wordpress.org/log/spm-by-marwan/?limit=100&mode=stop_on_copy&format=rss). ## Registre de canvis #### 1.2.7 * Fixed a severe performance issue where the Japanese Spam Auto-Fix engine would trigger continuous cache purges in LiteSpeed Cache (and other caching plugins) when cleaning large databases. Bulk operations now safely suspend cache invalidation until the process is complete. #### 1.2.6 * Removed the WP_DEBUG dependency so production errors are now successfully and silently captured on live sites. #### 1.2.5 * Implemented persistent state for the Global Security Scanner to ensure threats remain visible across dashboard reloads. * Upgraded the Database Auto-Fix engine to quarantine spam posts as Drafts instead of permanently deleting them, preventing data loss. * Streamlined the dashboard UI by removing the export menu and header log counts. #### 1.2.4 * Fixed a UI bug where the dropdown menus would disappear too quickly on hover by expanding CSS hitboxes. * Removed conflicting JavaScript event handlers to restore native button functionality. #### 1.2.3 * Added a security threat whitelisting feature, allowing administrators to safely ignore false positives. * Integrated the REST API for seamless report generation (JSON, CSV, PDF). * Optimized the database scanner with chunked pagination to prevent memory exhaustion on large sites. #### 1.2.2 * Added JavaScript-based toggle handlers for UI dropdowns. #### 1.2.1 * Refined dashboard aesthetics with modern typography, refined spacing, and subtle micro-animations. #### 1.2.0 * Major structural refactoring for WordPress.org compliance. * Extracted inline CSS into enqueued files. * Removed development error_reporting overrides. * Synchronized global text-domain to spm-by-marwan. * Strengthened security and escaping across all template files. #### 1.0.0 * Initial release. ## Meta * Versió **1.2.7** * Darrera actualització **fa 6 dies** * Instal·lacions actives **Menys de 10** * Versió del WordPress ** 5.6 o posterior ** * Provada fins a **7.0** * Versió del PHP ** 7.4 o posterior ** * Idioma * [English (US)](https://wordpress.org/plugins/spm-by-marwan/) * Etiquetes * [diagnostics](https://ca.wordpress.org/plugins/tags/diagnostics/)[monitoring](https://ca.wordpress.org/plugins/tags/monitoring/) [performance](https://ca.wordpress.org/plugins/tags/performance/)[profiler](https://ca.wordpress.org/plugins/tags/profiler/) [security](https://ca.wordpress.org/plugins/tags/security/) * [Vista avançada](https://ca.wordpress.org/plugins/spm-by-marwan/advanced/) ## Valoracions Encara no s'ha enviat cap ressenya. [Your review](https://wordpress.org/support/plugin/spm-by-marwan/reviews/#new-post) [Visualitzeu totes les ressenyes](https://wordpress.org/support/plugin/spm-by-marwan/reviews/) ## Col·laboradors * [ Marwan Hatem ](https://profiles.wordpress.org/marwanhatem/) ## Suport Teniu quelcom a dir? Necessiteu ajuda? [Visualitza els fòrums de suport](https://wordpress.org/support/plugin/spm-by-marwan/) ## Feu una donació Voleu ajudar a què l’extensió millori? [ Feu una donació a aquesta extensió ](https://ko-fi.com/marwanhatem31477)