GARM
Fenrir SOCFenrir MDRGARM · gratisFenrir WP BridgeFenrir WP Central How it works Pricing Compliance
FREE · PURE PHP · ZERO SHELL
GARM

The scanner at the gate.

GARM is 100% PHP: it installs in two minutes on any hosting — managed, shared, VPS — with no shell access and no Python. It checks the integrity of core, plugins and themes against the official WordPress.org checksums: if the site was already infected, GARM sees it all the same.

Download GARM Free
Garm → Scan · wp-admin
GARM v0.6.0 · integrity scan
WordPress core ......... checksum OK
plugins (37) ........... 36 official · 1 not in repo
themes (3) ............. checksum OK
known-good whitelist ... 4,802 files skipped
uploads/ .............. 1 webshell detected
→ .x.php (eval + obfuscated base64)
1 threat quarantined. Backup saved.
official checksums · manual restore · no data sent
01 · Why GARM

The hound at the gate of WordPress.

Serious scanners require shell access — but 70% of WordPress hosting doesn’t have it. GARM covers exactly that space: pure PHP, integrity via official checksums, almost zero false positives.

Official integrity
Compares core, plugins and themes against WordPress.org checksums. Catches injections even if the site was already infected.
Signatures + heuristics
Webshell and backdoor patterns (eval / obfuscated base64), run only on non-official files: custom, uploads, plugins not in the repo.
Known-good whitelist
Files identical to the original are skipped: legitimate libraries aren’t even scanned. Almost zero false positives.
Quarantine & restore
One click moves the file to a protected area, with a backup. False positive? You restore it. No automatic action: you decide.
Runs anywhere, zero shell
100% PHP: no shell, no Python. It installs even on managed hosting, where the Wordfence CLI can’t go.
EU & open source
GPL-2.0, backend in the EU (Estonia), signatures from open sources. No US Cloud Act, no black box.
02 · Installation

Two minutes. No shell.

It installs like any WordPress plugin, from the panel. No configuration after activation.

1
Download the zip

The plugin package, GPL-2.0. No dependencies to install.

garm-free.zip · v0.6.0
2
Upload and activate

In WP-admin: Plugins → Add new → Upload plugin, then Install and Activate.

Plugins → Upload → Activate
3
Start the scan

The Garm menu appears. Go to Garm → Scan and click “Run scan now”.

Garm → Scan

It found something? No panic.

GARM doesn’t scream. It quarantines the suspicious file, tells you exactly where it is and what it contains, and lets you decide the next step. No data leaves your server.

  • Integrity via official checksums · catches pre-existing infections
  • Quarantine with a backup and manual restore
  • No automatic action · you decide
  • Coexists with Wordfence, Sucuri and iThemes
Garm → Scan · wp-admin
GARM v0.6.0 · integrity scan
WordPress core ......... checksum OK
plugins (37) ........... 36 official · 1 not in repo
themes (3) ............. checksum OK
known-good whitelist ... 4,802 files skipped
uploads/ .............. 1 webshell detected
→ .x.php (eval + obfuscated base64)
1 threat quarantined. Backup saved.
official checksums · manual restore · no data sent
03 · Pricing

Free. And when you need more.

GARM Free is complete and free forever (GPL-2.0). Pro adds a managed feed and auto-remediation; the Third Sector rate is −40%.

GARM Free
€0
forever · GPL-2.0
Complete and free, forever. Runs on any hosting.
  • Core/plugin/theme integrity · official checksums
  • Open malware signatures + heuristics
  • Known-good whitelist · near-zero false positives
  • Manual quarantine + restore from backup
  • Manual scan + daily cron
  • Zero shell, zero dependencies · open source
Install free
Most chosen
GARM Pro
€99
/site · year (~€8.25/month)
Managed feed and automation, for those who want to sleep.
  • Everything in Free, plus:
  • P3-managed signature feed · real-time
  • Auto-remediation from official source
  • Reports + email / Telegram alerts
  • Advanced scheduled scanning
  • Priority support
Non-profit
€59
/site · year · −40% (€59.40)
Same features as Pro, for bodies registered with the RUNTS.
  • All Pro features
  • Dedicated −40% rate
  • For charities, voluntary bodies, foundations, social enterprises
  • Available on request
04 · The family

From a scanner to a SOC.

GARM is the entry point. The WordPress line and the server line share the same AI and the same console.

Server line
Fenrir SOC
The AI-driven SOC that detects and blocks attacks on its own, on your servers. On-premise, in plain language.
from €49 / server · month Open →
Server line
Fenrir MDR
Managed detection & response on Windows, Linux and macOS endpoints. The AI responds 24/7, you supervise.
from €12 / user · month Open →
free
WordPress line
GARM
The WordPress malware scanner: pure PHP, zero shell. Integrity via official checksums, on any hosting.
free · Pro €99/site/year Open →
WordPress line
Fenrir WP Bridge
The plugin that brings your WordPress sites into the same SOC: event capture, self-audit and plain-language AI investigation.
Lite free · Premium €948/year Open →
WordPress line
Fenrir WP Central
Multi-tenant MSP console to manage and protect WordPress fleets. Posture, CVE, malware and hardening in bulk.
€7 / site · month Open →

Download GARM Free. It’s free.

Two minutes from the WordPress panel to know whether your site is clean. Open source, zero shell.

Install GARM · free

Book a demo of Fenrir SOC

In 30 minutes: the monitors in real time, how the AI classifies an attack, and the timeline of a real automatic response.