Guardify
| 开发者 | soamuller23 |
|---|---|
| 更新时间 | 2025年5月8日 05:40 |
| PHP版本: | 5.0 及以上 |
| WordPress版本: | 6.8 |
| 版权: | GPLv2 or later |
| 版权网址: | 版权信息 |
详情介绍:
Guardify is a powerful WordPress firewall plugin designed to protect your website from a wide range of threats, including brute force attacks, SQL injections, malicious bots, and unauthorized access attempts. With an intuitive dashboard, detailed statistics, and advanced settings, Guardify empowers you to secure your site effortlessly.
🔐 Key Features:
- Advanced Web Application Firewall (WAF)\ Intercepts and filters all incoming traffic before it reaches WordPress. Blocks SQL injection, XSS, RFI, LFI, and other attack vectors.
- Brute Force Attack Protection\ Blocks repeated login attempts by limiting login frequency and analyzing IP reputation.
- 2-Factor Authentication (2FA)\ Adds an extra layer of login security for admin users, using time-based one-time passwords (TOTP).
- Real-Time Activity Logs\ Track login attempts, blocked IPs, suspicious requests, and system actions with detailed logs. View statistics by day, week, or month.
- Custom IP Whitelisting & Blacklisting\ Control access to your site by adding IPs or IP ranges to allow or deny lists. Includes temporary blocking for failed login attempts.
- GeoIP Blocking\ Block or allow access from specific countries using the MaxMind GeoIP2 database integration.
- Bot Access Control\ Detect and manage access from known bots, scrapers, and fake crawlers. Option to block non-human traffic.
- Anti-PHP Injection & File Access Blocking\
Prevents direct access to PHP files in sensitive directories such as
/wp-includes/and/wp-content/uploads/. - Block Plugin and Theme Installation\ Restrict installation of new plugins and themes via the WordPress dashboard — even by administrators. This helps prevent unauthorized or accidental installation of insecure components. Manual installation via FTP remains possible.
- Block Theme Editor\
Disable access to the Theme Editor (
/wp-admin/theme-editor.php) to prevent direct file editing. This minimizes the risk of malicious code injection or unintentional file corruption. - Forbidden Comment Words Filter\
Automatically mark comments as spam if they contain forbidden words or patterns (e.g.,
http,viagra,casino,porn). Helps drastically reduce comment spam by detecting common keywords and links. - Auto Block IPs in .htaccess\
When enabled, IPs that exceed the rate limit are automatically added to the
.htaccessfile for permanent blocking. This server-level block prevents any further requests. Use with care, as shared or corporate IPs may be affected. - Email Notifications\ Stay informed with email alerts about critical security events, such as admin login attempts or IP bans.
- Customizable Firewall Rules\ Advanced users can fine-tune rules with regex filters, HTTP method checks, user-agent filters, and more.
- User-Friendly Admin Interface\ Guardify features a modern and intuitive UI built using native WordPress design language.
- Clean Uninstall\ Automatically cleans up all data, logs, and settings when uninstalled—leaving your database clean.
安装:
- Upload the
guardifyfolder to the/wp-content/plugins/directory. - Activate the plugin through the 'Plugins' menu in WordPress.
- Visit the Guardify Dashboard under the admin menu to configure settings.
常见问题:
How does Guardify protect my site?
Guardify uses a web application firewall to filter all incoming requests, blocking malicious activity like brute force attacks, injections, and unauthorized file access.
Does it slow down my site?
No! Guardify is optimized for performance, processing requests efficiently with minimal overhead.
Can I whitelist my IP?
Yes, under Settings, you can add IPs to the whitelist to ensure uninterrupted access.
What happens when I uninstall Guardify?
All settings, logs, and files are cleanly removed from your site, leaving no trace behind.
更新日志:
1.0.0
- Initial release with full firewall functionality, dashboard, stats, and settings.