Quality Tutorials from The Freelancers for The Freelancers
We’re a Community of Pakistani Freelancers with an aim to help the young generation of freelancers.

Mission 9MB

You asked for SEO and Digital Marketing training, and we’re bringing for you 9 Months Branding Bundle full- Like WordPress training, it’d be absolutely free training for youngsters, freelancers from Pakistan, India and Bangladesh.

Mission DIVI Zee

In this series Zeerak will teach you each and every thing of Divi, from Theme Options to Module Customization. Visual Builder to Creating Websites with Divi! The mission is divided into three phases ; Phase 1 , Phase 2 and Phase 3.

WP Spartans 300

300 Spartans will learn to unlock WP Codex. APIs will be the ultimate goal. From PSD to WordPress Conversion to WordPress Based Mobile Apps, Spartans will conquer their fears.
What our students have to say

Sir! You didn’t only teach me what is good in life but also inspired me to do good in life. You are a great teacher & a good human. Thank You for your contribution to building my life.

Hussnain Rao

Via WP Spartans 300

Great Job! Thank You for sharing your knowledge so openly without holding back. Very much appreciated, keep it coming!

Jazak’Allah

Shehzad Khalil

Via Speed Opti. Live Projects

Sir, Salute & Love From India. You Promote Education & Helping People through YouTube.

Gaurav Rai

Via WP Spartans 300

What a boy he is, So Energetic! I used to fear from DIVI Theme by only listening to it’s name, but now I’ve found a good instructor, Alhamdulillah! Thank You Little Master!
Zohaib Bhutto

Via Mission Divi Zee

Nice to know knowledge which will help us in future. Farooq Sir you have a way to find the oppertunities in the problem & a very simple way to teach the same in a better way so any layman can understand, Kudos Sir!

Mohit Uniyal

Via WP Spartans 300

WordPress tutorials are available on other channels as well , but the tutorials on Moral Training on Freelance Pakistan channel are not available at any other place..

Sadi

Via WP Spartans 300

Latest Blog
4 – All in One WordPress Security & Firewall Plugin Complete Setup Step by Step in 2022

4 – All in One WordPress Security & Firewall Plugin Complete Setup Step by Step in 2022

All in One WordPress Security & Firewall Plugin – Ultimate Step by Step Guide 2022 covers all steps from Installation to complete configuration of the plugin to harden WordPress Security.

We searched the plugin from WordPress Plugins Repository. Installed and activated. Started from Dashboard to Two Factor Authentication, we covered each and every step in detail. Non techies can learn a lot from this one tutorial to work on their freelancing projects on Fiverr and Upwork etc.

This plugin offers :

1) WP Admin URL Change
2) Protection from Bruteforce Attack
3) PHP based Firewall
4) User Accounts Protection
5) Key components i.e. .htaccess, wp-config and other additional files protection
6) Captcha Integration / Honeypot and Google reCaptcha etc
7) WordPress Database Table Prefix Replacement with just one click
8) Protection from Malicious Bots and Spam Comments
9) IP Whitelisting and Blacklisting Management
10) File Editing Disable
11) File Permissions
12) Directory Browsing Prohibition
13) Hide core WP files
15=4) Extra Security and Firewall

And tips and secrets included as always.

WordPress Security Guide (Step by Step 2022) Three Parts :

Part One : How to check if WordPress Website is Hacked or not?
https://www.youtube.com/watch?v=UKrNS5GXuVs

Part Two : How to recover hacked WordPress Website in 2022.
https://www.youtube.com/watch?v=bkWhTF89G_I

Part Three : How to secure WordPress Website?
https://www.youtube.com/watch?v=VVCbedbaN7E

#WPSpartans300 Mission Refueled Playlist:
https://www.youtube.com/watch?v=9jxG0fXhLC8&list=PLEEg17VzyLfsOmdlXFneRiYOo5SmyJurg

Useful Links:

WordPress Spartans 300 Facebook Group (Very vibrant community)
https://www.facebook.com/groups/wordpressspartans300
Freelance Pakistan Facebook Group
https://www.facebook.com/groups/freelancepakistancom

Regards,
Farooq
Freelance Pakistan

3 – How to secure WordPress Website in 2022 | WordPress Security Guide Step by Step

3 – How to secure WordPress Website in 2022 | WordPress Security Guide Step by Step

How to secure ‘hacked’ WordPress Website? Third and final part of the three-part WordPress Security Series in 2022.

This is ‘Complete WP Security Guide Step by Step’ in Urdu / Hindi along with content presented in English Language.

WordPress Security has always a hot issue. We needed The Ultimate Guide to Secure WordPress website from malware attacks / Hackers / intruders in 2022. This is what we call ‘WordPress Hardening via best possible practices.’
-Let’s learn how to make hacking attempts nearly impossible.
-Let’s learn about the best practices to harden WordPress Security in 2022 with and without Security Plugins.
-Let’s learn how to use Web Application Firewall (WAF) and Two-Way Authentication.
-Let’s learn how to Stop spam comments, fake registrations, and fake orders! (Captcha techniques).
-Let’s explore prevention techniques against all sorts of well-known malware attacks.
-Let’s learn how to find security issues and prevent malicious attacks on WordPress Site.
آپ نے ورڈپریس ویب سائٹ یا بلاگ کو ریکور کر لیا یا نئی ویب سائٹ بنائی تو کس طرح اس کی سیکیورٹی کے نظام کو ممکنہ حد تک بہتر بنا سکتے ہیں۔یاد رکھیں! ہیلمٹ سے حادثہ اور تالے سے چور نہیں رکا کرتے۔ ہمارے اختیار میں احتیاطی تدابیر ہیں۔بے بسی سے کہیں بہتر ہے انسانی بس میں جو ہو ، کر لیا جائے۔ چلیں مل کر سیکھتے ہیں۔

Steps discussed in the tutorial:

Step by Step Approach to secure WordPress website۔
Let’s improve WordPress Security the right way.
Step # 01 – From PC to Web Server, make sure there are no vulnerabilities / loopholes.
Step # 02 – Only modern, top notch and secure Web Hosts can help you reduce Security Risks in 2022 and beyond.
Step # 03 – No more HTTP. Go HTTPS. Use SSLs. No more FTP. Use SFTPs.
Step # 04 – Plan to automate site backups regularly (Or manually do the same).
Step # 05 – Keep your PC / Mobile / Website / Server along with additional components updated.
Step # 06 – Go for site lock or firewall at least. Two Factor Authentication. Secure CDNs etc.
Step # 07 – Do not install too many security plugins. Go with one. Some hosts do offer these services. Log all idle users out.
Step # 08 – Say NO to nulled stuff. Update PHP version, themes, core files, plugins etc.
Step # 09 – Disable file editing / directory browsing via htaccess. Disable file execution in uploads folder.
Step # 10 – Open wp-config, .htaccess and robots.txt in editor. Secure key files. Hide them from intruders.
Step # 11 – Use correct file permissions and Database Privileges wisely.
Step # 12 – Follow the tutorial to harden WordPress Security via code snippets in .htaccess, wp-config etc.
Step # 13 – It’s very easy to change DB Table Prefixes of an existing WordPress Site. Do this. Newbies can use plugins for almost anything in WordPress.
Step # 14 – Disable XML-RPC (if needed). Use Captchas with form submissions. Change Login URL. Limit login attempts. Learn to block suspicious Ips with or without plugins.
Step # 15 – Stay alert. Keep an eye on Website Activity. Regularly scan your website for any possible backdoors. Manually inspect files.

Part One : How to check Hacked WordPress Website:
https://www.youtube.com/watch?v=UKrNS5GXuVs

Part Two : How to recover hacked WordPress Website:
https://www.youtube.com/watch?v=bkWhTF89G_I

#WPSpartans300 Refueled Mission Playlist:
https://www.youtube.com/watch?v=9jxG0fXhLC8&list=PLEEg17VzyLfsOmdlXFneRiYOo5SmyJurg

Useful Links:
WordPress Spartans 300 Facebook Group (Very vibrant community)
https://www.facebook.com/groups/wordpressspartans300
Freelance Pakistan Facebook Group
https://www.facebook.com/groups/freelancepakistancom

Regards,
Farooq
Freelance Pakistan

2- How to recover hacked WordPress website in 2022 | WordPress Security Guide Step by Step

2- How to recover hacked WordPress website in 2022 | WordPress Security Guide Step by Step

Part 2 of WordPress Security Guide Step by Step 2022. Let’s recover and fix hacked WordPress Website. In part one, we scanned to identify and audit backdoor intrusions, malware and hacking symptoms.
Step by Step Approach to fix the hacked site
REMEMBER: Hacker-type-predators can easily hunt the site down because of the possible vulnerabilities at PC / Website and Web Server Level.
Step # 01 – First Things First. Try not to stress too much. Bad Things happen all the time.
Step # 02 – If you can login the admin dashboard, install a plugin to put the site in maintenance mode immediately. Some hosts offer the same for free. If you can’t login, use the cPanel Credentials to access. Discuss with client in prior if you’re hired to fix hacked WordPress Website.
Step # 03 – Use a plugin to backup WordPress Installation. Download and keep it safe in your external drive. Or use the cPanel’s built in Backup Manager Wizard and download the backup files.
Step # 04 – Install two plugins immediately i.e., Limit Login Attempts Reloaded & Change wp-admin login URL.
Step # 05 – In the WP Admin Dashboard, click on settings. Go to General Settings and check email and site address etc. If you can’t login, use phpMyAdmin via cPanel. Go to options / users table. Do the stuff.
Step # 06 – In the Admin Dashboard, click on Users. Delete all extra / suspicious users.
Step # 07 – Delete all inactive / fake plugins & themes etc. Update everything from Admin Dashboard before you go the manual path.
Step # 08 – Use cPanel’s upload feature to upload fresh copies of WordPress Core/ theme / plugins etc in zipped format. Delete old directories. Unzip in the same directory. Or use FTP / SFTP. Upload. Unzip. Delete or replace old files. Delete extra files in the root directory. Check all relevant directories.
Step # 09 – Install Anti Malware by GOTMLS. Scan. Delete suspicious files. There are other plugins, but I recommend this for a reason. It does the job nicely.
Step # 10 – Login cPanel. Visually checksum files. Check newly uploaded files. Examine log file.
Step # 11 – Go to phpMyAdmin. Optimize / Repair Database. Be very careful. Newbies can use plugins. Delete junk entries / leftovers / transients etc.
Step # 12 – Open wp-config, .htaccess and robots.txt in editor. Checksum. Change salt keys. If you can’t edit the files, find the root cause or contact Web Host Officials.
Step # 13 – Do a manual investigation. Through inspection of folders/ directories / files / etc.
Step # 14 – Some Web Hosts offer hotlinking, leeching utilities. Enable them. Newbies can use plugins.
Step # 15 – From the Admin Dashboard, check and delete extra pages, posts, categories, tags, links, media items etc. We can do the same via phpMyAdmin (Newbies can use plugins for the same). Change Database Table Prefix.
Step # 16 – In the cPanel, look for sitemap.xml (also robots.txt). Open in editor and analyze. Create new sitemap manually and Resubmit cleaned sitemap to search engines. Newbies can use plugins to do the same.
Step # 17 – If you have access, login Google Webmaster Console. Follow the video already uploaded on channel to unverify fake owners. You can also inspect URLs and check other security stats.
Step # 18 – Inspect files one by one. Consider these words : exec , system , assert, base64 , str_rot13, gzuncompress, eval, tripslashes , preg_replace (with /e/), Move_uploaded_file
Step # 19 – .htaccess, wp-config and robots.txt are very important files. Protect them. Edit them to harden WordPress Security.
Step # 20 – Now you’re good to change all credentials (You can do this in the very beginning of the process, but I follow this path for a reason.) Right from your PC to Web Server along with emails, change all passwords.
Step # 21 – Rescan your website. Analyze the behavior. You can use Sucuri Security / iThemes Security to scan as well.
Step # 22 – Resubmit site to Search Engines for reindexing.

Freelance Pakistan WordPress Tutorials Playlists for #wpspartans300 :

WordPress Spartans 300 Mission (2019)
https://www.youtube.com/playlist?list=PLEEg17VzyLfsOmdlXFneRiYOo5SmyJurg

WordPress Spartans 300 Refueled Mission (2020)
https://www.youtube.com/playlist?list=PLEEg17VzyLfs1oj9cyfNLr650KBH7wHk0

WordPress Security Guide Part One:

How to check if WordPress Website is hacked.
https://www.youtube.com/watch?v=UKrNS5GXuVs

WordPress Spartans 300 Facebook Group (Very vibrant community)
https://www.facebook.com/groups/wordpressspartans300
Freelance Pakistan Facebook Group
https://www.facebook.com/groups/freelancepakistancom

Regards,
Farooq
Freelance Pakistan

1- How to check if WordPress Website is hacked in 2022 | WordPress Security Guide Step by Step

1- How to check if WordPress Website is hacked in 2022 | WordPress Security Guide Step by Step

Is WordPress Site hacked or compromised? How to check / audit/ analyze any WordPress Site? This is three-part series “WordPress Security Guide Step by Step”.

In first part of the series, we learnt about WordPress Vulnerability, Testing, and Audit via online malware scanners. We tried to answer the following questions in this video:

What are the symptoms of a hacked WordPress Website?
What to do when the website is in trouble?
Why is the WP site loading slow and / or inaccessible?
How do WordPress Websites get compromised?
Why do WordPress Websites get hacked?
How do hackers create backdoors?
Disadvantages of nulled themes and plugins?
How many types of hackers are there?
What are some famous attacks e.g. DDoS, XSS, Man in the Middle, Cloaking, Clickjacking, Pharma Hack, SEO Spam Hack, Redirections, SQL Injections, Malware etc.
How to create Security Audit Reports?

Symptoms of Hacked WordPress Website:

You feel something is going on behind the scenes. Site is too slow to load, or it is inaccessible. Server resources are excessively used.
There are weird behaviors.
Visitors / customers / fans report some issues.
Host team notifies you if there is some malware attack.
You get alerts from WordPress if the site is hacked.
Search engines tell you about security issues / concerns.
What do we do when site is in trouble? We scan to understand the nature of attack.
Google the website. Analyze the results. You may get indications such as ‘this site may be hacked’ or ‘site ahead contains malware’ notice.
If google has flagged your site or blacklisted it, it’s time to crack the nuts.
Why hackers do this? Multiple reasons. To earn money via affiliate links. Redirection. Cloaking (different information presented to different users etc.)
Extra pages / posts might be indexed (whole new site map). You might not be aware of the malicious process.
Unauthorized popups. Rogue or weird mouse behavior.
Phishing to ask people via your website to provide credit card info etc.
White screen of death / error / blank pages / redirections / spam pages / posts etc.
Check google analytics for sudden increase in traffic spikes / increased bounce rate, conversions reduced.
Look for pharma hack. Also known as google viagra hack. Why? Because even google indexes pharmaceutical products / pages/ posts such as viagra, xanaz, levitra etc.

Following is the list of websites (Online Malware Scanners) we used in the tutorial:

1) isithacked.com
2) sitecheck.sucuri.net
3) Google Safe Browsing Transparency Report
4) getastra.com/seo-spam-scanner
5) Google Search Central Docs (For Webmasters and Developers)
6) site:yourwebsite.com
7) hackertarget.com/wordpress-security-scan (Also created Security Audit Report)
8) urlscan.io

We also discussed Errors :

HTTP 500 Internal Server Error (“Error Establishing a Database Connection,” “Internal Server Error,” or “Connection Timed Out.” ). It can be because of hacking or server misconfiguration.
HTTP 502 Bad Gateway Error or 503 Service Unavailable Error : Indication of server-side problems. Sudden Spike in traffic, too many http requests (اگر آپ کی ویب سائٹ پر زیادہ ٹریفک نہیں لیکن زیادہ ٹریفک دکھائی دے تو اس کا مطلب یا تو سائٹ ہیک ہو چکی ہے یا پھر کسی پلگ ان وغیرہ میں مسئلہ ہے۔ یہ ایرر اس وجہ سے بھی آ سکتا ہے کہ ویب سائٹ کی سیکیورٹی فائروال درست کام نہیں کر رہی یا سی ڈی این میں گڑبڑ ہے یا کوڈ وغیرہ میں گڑبڑ سے بھی یہ ایرر آ جاتا ہے۔ بعض اوقات یہی ایرر انترنل سرور کے مسائل کی وجہ سے بھی آ سکتا ہے۔ شیئرڈ ہوسٹنگ پر یہ ایرر اکثر آ جاتے ہیں۔ سرور پر موجود ایک ویب سائٹ بھی مسئلہ کرے تو باقی ویب سائٹوں پر اثرات آ جاتے ہیں۔
401 Unauthorized, 403 Forbidden & Connection refused by Host : اس کا واضح مطلب ہے کہ آپ سے سرور ناراض ہو چکا ہے یا آپ کے کوائف تبدیل کئے جا چکے ہیں۔ بعض اوقات یہ ایرر غلط الارم کی طرح بھی بج اُٹھتا ہے۔

In the end, we also discussed a test case of hacked WordPress Site.

WordPress Spartans 300 Facebook Group (Very vibrant community)
https://www.facebook.com/groups/wordpressspartans300
Freelance Pakistan Facebook Group
https://www.facebook.com/groups/freelancepakistancom

Regards,
Farooq
Freelance Pakistan
#wpspartans300 , #FreelancePakistan, #wordpress , #HackedSite, #SecurityAudit

Google Search Console Hacked Ownership Removal Step by Step in Urdu Hindi

Google Search Console Hacked Ownership Removal Step by Step in Urdu Hindi

How to unverify and remove hacked ownership claim in Google Search Console (Google Search Central). Website is built on WordPress and uses Divi theme.

Received an email from Google telling me that someone has claimed to be the owner of Freelance Pakistan Official Website. This might be the Bots Event ; however, the website was inactive and not fully updated. Hence, the breach.

First step was to unverify the fake owner i.e. the bot owner. To do that, we need to have Website cpanel access so that we could delete unnecessary files. We did that step by step in this tutorial.

This is the link shown in the tut.
https://search.google.com/search-console/user
You will have to select your property (your client’s website)

#wpspartans300

How to Install Laragon to Set Up WordPress Development Environment 2022 in Urdu | Hindi

How to Install Laragon to Set Up WordPress Development Environment 2022 in Urdu | Hindi

Step by step guide to install latest Laragon and WordPress on localhost. We also updated PHP, MySQL and added phpMyAdmin in Laragon. We fixed errors as well.

It’s a step by step guide for WordPress Beginners/ Developers. In this tutorial, we also discussed Laragon Preferences, Database, Terminal and Menu Items etc. We answered the following questions:
1) How to download and install Laragon in 2022
2) How to update PHP in laragon
3) How to update MySQL in Laragon
4) How to add phpMyAdmin in laragon.
5) How to install WordPress with Laragon Localhost.

WordPress Spartans 300 Facebook Group (Very vibrant community)
https://www.facebook.com/groups/wordpressspartans300
Freelance Pakistan Facebook Group
https://www.facebook.com/groups/freelancepakistancom

Regards,
Farooq
Freelance Pakistan

How to Install XAMPP to Set Up WordPress Development Environment 2022 in Urdu | Hindi

How to Install XAMPP to Set Up WordPress Development Environment 2022 in Urdu | Hindi

How to install / set up XAMPP and WordPress locally to create WordPress Development Environment Step by Step. Easy to follow in Urdu / Hindi. If you speak English, you can follow the steps accordingly.

XAMPP is cross platform software for web developers. In this tutorial, the focus is WordPress Beginners. First we discussed a few key terms such as XAMPP, WAMP, MAMP, LAMP, Linux, PHP, Perl and MySQL. Very important terms for beginners to know and understand. Then we discussed what is the best way of downloading any software. We downloaded XAMPP from ApacheFriends official Website.

Installed step by step. Configured. Then we installed WordPress 6.0.2 and created new database.

Chapters are as under :

0:00 – Intro
0:50 – Key terms i.e. XAMPP, WAMP, MAMP, LAMP, Apache, PHP, Perl, MySQL
4:08 – Best way to download and install any software / app.
4:45 – How to download XAMPP
8:45 – How to install XAMPP step by step in 2022
14:10 – XAMPP Control Panel Tour
16:13 – How to access phpMyAdmin
17:35 – How to create project in htdocs
18:22 – How to download and install WordPress step by step
22:04 – How to create new database

WordPress Spartans 300 Facebook Group (Very vibrant community)
https://www.facebook.com/groups/wordpressspartans300
Freelance Pakistan Facebook Group
https://www.facebook.com/groups/freelancepakistancom

Regards,
Farooq
Freelance Pakistan

2 – WordPress Pro Developer Challenge – Block Based FSE Development Basics 2022 – Urdu | Hindi

2 – WordPress Pro Developer Challenge – Block Based FSE Development Basics 2022 – Urdu | Hindi

To be WordPress Pro Developer by the end of 2023 is the challenge we accepted. This is 2nd Tutorial (step of our journey as we the #wpspartans200 see it). Primary Language is Urdu ; however, technical terms are in English.

In this second video (2nd step) of 16 months non stop commitment and passion, we started with very basics of being a WordPress Developer in 2022 and beyond. You can find further detail given in the chapters of the video. Our mission is to explore Ins and Outs of WordPress Gutenberg Editor and additional documentations and repositories.. We are focused on learning to meet requirements, standards and needs of the market.

In 16 months, we’ll go through Frontend and Backend learning phases step by step.
WordPress Spartans 300 Facebook Group (Very vibrant community)
https://www.facebook.com/groups/wordpressspartans300
Freelance Pakistan Facebook Group
https://www.facebook.com/groups/freelancepakistancom

Chapters of the Video :

0:00 – Intro
1:47 – Important Websites / Resources for WordPress Developers
3:00 – History of WordPress / Releases
4:06 – Tour of Full Site Editing Website / Theme Generator
5:00 – Brief Intro of Underscores.me
7:45 – Local WordPress Development Environments i.e. Laragon
8:35 – How to use Laragon and Benefits of using it as Localhost
11:00 – How to Install WordPress Locally with Laragon
12:28 – Tour of WordPress Twenty Twenty Theme
13:20 – Full Site Editing (FSE) from Header to Footer Intro
15:00 – Templates and Template Parts
16:13 – Mindset of Pro Developer
19:05 – WordPress Directory in Visual Studio Code
21:05 – How to create Block Based WordPress Theme with FSE Generator.
26:30 – What are Patterns in WordPress and how to get them.
31:23 – What do I want from you?
31:45 – Assignment for you.
32:22 – WordPress Legacy Versions Tour and Comparison

Regards,
Farooq
Freelance Pakistan

1 – WordPress Pro Developer Challenge – Getting Started in Urdu | Hindi

1 – WordPress Pro Developer Challenge – Getting Started in Urdu | Hindi

We accepted the #Challenge to be Pro WordPress Developer in 2022 – 2023 In Sha Allah. We are #WPSpartans300, and we will leave no stone unturned.

This is first video (first step) of 16 months non stop commitment and passion. Our mission is to explore Ins and Outs of WordPress Gutenberg Editor and additional documentations and repositories.. We are focused on learning to meet requirements, standards and needs of the market.

In 16 months, we’ll go through Frontend and Backend learning phases step by step.
WordPress Spartans 300 Facebook Group (Very vibrant community)
https://www.facebook.com/groups/wordpressspartans300
Freelance Pakistan Facebook Group
https://www.facebook.com/groups/freelancepakistancom

Chapters of the Video :

0:00 – Intro
0:50 – Learning Phase 1 to be Pro WordPress Developer
8:18 – Learning Phase 2 with Ubuntu Docker etc
9:10 – Learning Phase 3 Git and GitHub, Production Site Development
12:50 – How to upgrade PHP, MySQL, phpMyAdmin in Laragon
20:14 – WordPress Twenty Twenty Two Default Block Based Theme Tour

Regards,
Farooq
Freelance Pakistan

Universal Formula to Succeed in Life and Freelancing World – Urdu | Hindi

Universal Formula to Succeed in Life and Freelancing World – Urdu | Hindi

Why do we fail in online / offline world? How to brainstorm? What is success formula to succeed in Career Planning, Life Planning and Freelancing Planning?

I have expressed my thoughts in all honesty. I believe this video will share with you a couple useful tips to do better planning in future.

Chapters :
0:00 – Intro
0:09 – People are earning online as we speak via Upwork, Fiverr, Guru, Freelancer and People Per Hour etc.
1:10 – Why do we fail? The Success Formula
2:19 – How to brainstorm for decision making? Career Planning?
8:12 – Google Drive and Free Apps for Brainstorming and Note Taking
12:22 – Upwork Job Search and Skills Brainstorming
15:30 – How to choose a specific niche e.g Google Tag Manager / Sales and Marketing

Happy Learning,
Farooq
Freelance Pakistan
#wpspartans300 , #WPSpartans300ChallengeAccepted