Linux 软件免费装

在这里免费安装WordPress以及其他软件

Banner图

Opportify Fraud Protection

开发者 opportify
更新时间 2026年6月3日 01:13
PHP版本: 8.1 及以上
WordPress版本: 7.0
版权: GPLv2 or later
版权网址: 版权信息

标签

spam protection bot detection fraud detection form protection captcha alternative

下载

1.1.0 1.0.1

详情介绍:

Opportify Fraud Protection stops fake sign-ups, form spam, bot submissions, and fraudulent leads on every WordPress form. It works silently, in real time, with no friction for real users. https://vimeo.com/1179038954 Unlike CAPTCHA, which frustrates genuine visitors and is easily bypassed by modern bots, Opportify works invisibly in the background. It analyzes over 100 signals per submission: behavioral patterns, device fingerprints, email risk, IP reputation, and VPN or proxy detection. Each submission is scored so you can automatically allow, flag, or block it. Who This Is For WordPress site owners and marketers tired of spam flooding their contact forms, fake leads cluttering their CRM, or bots registering fake accounts. WooCommerce store owners who need to stop fraudulent checkouts, fake account registrations, and disposable email sign-ups before they cause damage. Developers and agencies who want an API-backed, code-configurable fraud layer with per-integration control, risk metadata on entries, and support for version-controlled config files. Security and operations teams who need explainable risk scores with a per-submission breakdown of every contributing factor. Why Not Just Use CAPTCHA? CAPTCHA hurts conversion rates for real users and is routinely bypassed by modern bots. Opportify takes a different approach: it observes behavioral signals before the form is even submitted, analyzes every signal at the moment of submission, and delivers a risk verdict your site can act on. All of this happens in under a second, with no puzzles, no friction, and no false positives for legitimate visitors. What It Detects Risk Levels Every submission receives a score and one of five plain-language risk levels: Per-Integration Actions For each supported form plugin, you can independently configure what happens at each risk level: Supported Form Integrations Supported Newsletter and CRM Integrations Key Features How It Works
  1. The Opportify JS SDK loads silently in your site header. It collects behavioral signals such as mouse movement, keystroke timing, scroll depth, and device entropy, then generates a session fingerprint.
  2. When a form is submitted, the SDK attaches a behavioral token to the submission automatically.
  3. The Opportify PHP SDK sends the submission to the Fraud Protection API for analysis: email risk, IP intelligence, device signals, behavioral correlation, and more.
  4. Based on your configured thresholds, the plugin allows, flags, or blocks the submission instantly.
No CAPTCHA. No user friction. No separate configuration per form. Reports Dashboard The plugin's Reports page gives you a clear view of your site's submission health: External Services This plugin connects to two Opportify services: Please review Opportify's Privacy Policy and Terms of Service before activating the plugin. By activating, you agree to the transmission of submission data to Opportify's API for fraud analysis.

安装:

  1. Upload the plugin folder to /wp-content/plugins/opportify-fraud-protection/ or install directly via Plugins → Add New in your WordPress admin.
  2. Activate the plugin through the Plugins screen.
  3. Go to Opportify → Settings and enter your Private API Key and Public Key.
  4. Toggle Enable Protection on the General tab.
  5. Enable the specific integrations you want to protect on the Integrations tab.
  6. Click Test Connection to verify your API keys are working.
  7. You are live. Check Opportify → Reports to see submissions as they come in.

屏幕截图:

  • Settings page: General tab with API credentials and global protection settings
  • Settings page: Integrations tab with per-integration risk action configuration
  • Submission log: filterable table with risk level badges and contributing factor pills

升级注意事项:

1.1.0 Adds enriched email and IP intelligence to fraud logs, fixes flag action visibility in native UIs, fixes Ninja Forms block action, and fixes WPForms field extraction. 1.0.0 Initial release.

常见问题:

Where do I get my API keys?

Start a free trial at app.opportify.ai to get your Private API Key and Public Key. No credit card required. The free trial gives you full API access on live form submissions right away. It is not a sandbox or demo environment.

Does this replace CAPTCHA?

Yes, it is designed to be a better alternative. Opportify analyzes over 100 signals per submission without presenting any challenge to the visitor. Real users see nothing. Bots and fake submissions are scored and blocked automatically based on your thresholds.

Does it work with WooCommerce?

Yes. Both WooCommerce Checkout and WooCommerce Account Registration are supported. You can configure separate risk actions for each so checkout fraud and fake account registrations are handled independently.

Will it slow down my site?

No. The JS SDK loads asynchronously from a global CDN with no impact on page rendering. The server-side API call happens during form submission processing and completes in under a second for most submissions.

Does it work with caching plugins?

Yes. The plugin is compatible with WP Rocket, LiteSpeed Cache, W3 Total Cache, Autoptimize, and other major caching plugins. The JS SDK is loaded through the standard WordPress enqueue system and can be managed by your caching plugin using the handle opportify-telemetry. If you change your Public Key, clear your page cache afterward.

What does "Flag" do?

When an action is set to Flag, the submission proceeds normally but Opportify stores the risk score, risk level, and contributing factors as metadata attached to the entry. For comments, this goes into comment meta; for users, into user meta; for WooCommerce orders, into order meta. A Risk column appears in the relevant WP Admin list tables so you can review flagged entries.

What is the difference between "Flag" and "Block"?

Flag lets the submission through but records the risk data for your review. Block rejects the submission entirely and shows the visitor your custom block message. Use Flag for Medium risk when you want to review manually, and Block for High and Highest when you are confident in rejecting.

Can I configure settings via a file instead of the UI?

Yes. Copy opportify-config-sample.php to your WordPress root as opportify-config.php. When this file is present, all settings are loaded from it and the WordPress admin UI becomes read-only. This is useful for DevOps workflows, Bedrock and Trellis setups, and multi-environment staging pipelines where you want settings version-controlled.

Does it work with page builders and popular form plugins?

Yes. Elementor Pro Forms, Ninja Forms, Gravity Forms, WPForms, Fluent Forms, Forminator, Formidable Forms, Contact Form 7, and Mailchimp for WordPress are all supported natively.

Is it GDPR and privacy compliant?

Data sent to the Opportify API consists of the email address, IP address, and behavioral signals from the JS SDK, the minimum required for fraud analysis. No personal data is stored by the plugin beyond the risk score and factors in your own WordPress database. Review Opportify's Privacy Policy for full details.

What happens if the Opportify API is unavailable?

If the API returns an error or is unreachable, the plugin applies the fallback action configured in Settings (default: Allow). By default, submissions are never blocked due to a service disruption. You can change the fallback to Block in Settings if you prefer a stricter posture during outages.

Does it affect logged-in administrators?

Not by default. The Skip Admins option is enabled by default, which bypasses fraud checks for users with the manage_options capability. You can disable this in Settings if needed.

更新日志:

1.1.0 1.0.1 1.0.0