Admin Safety Guard – WP Security: Limit Login Attempts, IP Blocking, 2FA & reCAPTCHA

Admin Safety Guard is a complete WordPress security helper focused on securing the login flow and hardening the admin area — without sacrificing usability or performance. It ships with a clean UI, smart defaults, and guardrails against the most common attacks (brute force, credential stuffing, bot logins, and XML-RPC abuse). You also get granular control over the login experience (custom URL, redirects, branding, and more). [youtube https://www.youtube.com/watch?v=KFNUmTHtODE] Whether you need to block suspicious IPs, enforce two-factor authentication, or ship a branded login for clients, Admin Safety Guard has you covered. 🌟 Admin Safety Guard Pro Admin Safety Guard Pro takes your security and customization to the next level. It strengthens defenses against unauthorized access, brute-force attacks, and data risks while giving you deeper control over how users log in and interact with your admin area. The Pro version also adds flexible design tools and smart automations — a complete solution for both security and convenience. 👥 Who Should Use Admin Safety Guard? Admin Safety Guard is perfect for users who need more control, security, and customization in their WordPress admin area: 👩‍💻 Freelancers & Developers: Add backend security and branding to client sites—no heavy coding.\ 🏢 Agencies & Teams: Secure multiple websites with a single workflow and consistent branding.\ 🔒 Site Owners: Protect dashboards from brute-force attacks and unauthorized logins.\ 🧩 Plugin/Theme Authors: Add layered protection in demo or test environments.\ 📈 Online Businesses: Secure customer data with 2FA, CAPTCHA, and password protection.\ 🎓 Educators & Bloggers: Maintain a professional look while increasing security. ✅ Free Features at a Glance

• Hide Admin Bar (with conditions)
• Dashboard Overview (in progress)
• Change Login URL
• Redirect After Login / Logout
• Limit Login Attempts
• CAPTCHA Protection
• Login Logs & Activity Tracking
• IP Blocking
• Two-Factor Authentication (2FA)
• Password Protection
• Disable XML-RPC
• Add Custom Logo on Login Form
• Custom Logo & Branding

💎 Premium Feature List

• Passwordless Login
• 2FA via Mobile App (TOTP)
• CSRF Protection
• Database Table Prefix Check
• Whitelist IP Addresses
• Hide Admin Bar
• WP Directory File Permissions Check
• Social Login (Google, Facebook, etc.)
• Disallow Unauthorized REST Requests
• Password Strength Tool
• Provide Login Template (ready-made)
• Customize Design Pro (advanced styling)
• Email Notification

1. Download the plugin .zip file.
2. Go to your WordPress Admin → Plugins → Add New → Upload Plugin.
3. Choose the file and click Install Now.
4. After installation, click Activate Plugin.

1.1.4

• [new] - [New] All Pro features are now available in the free version.
• [New] - Added a Purchase / Upgrade button to allow users to unlock premium support and future enhancements.
• [Improved] - Updated plugin UI and feature visibility for better clarity between free and premium offerings.
• [Improved] - Minor UX and performance optimisations.
• [Fixed] - Small stability issues and internal clean-ups.

1.1.3

• Fixed an issue where OTP-verified logins could result in session cookies instead of persistent cookies.
• Refactored OTP verification to run earlier in the login flow via login_init.
• Updated the authentication process to use wp_signon() so WordPress handles Remember Me cookies correctly.
• Tested across multiple environments and browsers to confirm expected cookie expiration behavior.
• Minor improvements and stability adjustments.

1.1.2

• [fix] - 2FA login cookie session issue when OTP verification completed.
• [Improved] - wp_set_auth_cookie() now uses correct $remember flag for persistent login.
• [Improved] - OTP authentication flow now respects the user's "Remember me" choice.
• [new] - Added a phone number field to the in-plugin support form, including country code.

1.1.0

• [fix] – Resolved several important WordPress admin warnings.
• [new] – Added an in-plugin support system.

1.0.9 [new] Added deactivation email feature on plugin activation 1.0.6, 1.0.8 [new] Release the pro version [new] Compotable with pro version 1.0.5 [new] Added extendable action and filter hooks\ [new] Ready to integrate Pro version\ [new] Conditionally loaded all assets\ [new] Added default logo URL, width, and height\ [fix] Fixed logo issue from customizer\ [fix] General improvements and bug fixes 1.0.4 [new] Auto permalink flush for custom login/logout URLs\ [new] Admin Notice added\ [new] Setup Wizard\ [new] Documentation link added 1.0.3 [new] Subdirectory support\ [new] Tooltip in failed login table\ [new] Auto-redirect after max login attempts\ [fix] Custom login/logout URLs\ [fix] Lockout message\ [fix] Failed login table issues 1.0.2 [fix] Minor bug fixes 1.0.1 [fix] Build issue resolved 1.0.0

• Initial release featuring 2FA, CAPTCHA, Limit Login Attempts, IP Blocking, Custom Login URL, Password Protection, and Login Logs.