SecurityWP - Advanced Security & Firewall

SecurityWP is a powerful WordPress security plugin that will protect your website from hackers, attacks and other threats. It will protect your website from SQLi Attacks (SQL Injections), XSS Vulnerabilities, Malicious Files (Viruses) and many other types of threats. SecurityWP uses an intelligent algorithms to detect all known hacker attacks as well as new unknown threats using code recognition and patterns, and automatically takes action. SecurityWP is directly integrated with WordPress, you can view all logs in the Admin Panel and it is also integrated with Ban System from which can be banned Visitors (IP Addresses), IP Ranges, Internet Service Providers (ISP). SecurityWP has many features and settings. With its help can be easily managed the security of your website. SecurityWP is a powerful Web Application Firewall designed to protect WordPress. It allows any website administrator to benefit from very advanced and powerful security features. It is very fast, optimised and requires very low system resource. Awesome Features

• Blocks IP after maximum retries allowed
• Extended Lockout after maximum lockouts allowed
• Email notification to admin after max lockouts
• Blacklist IP/IP range
• Whitelist IP/IP range
• Check logs of failed attempts
• MD5 Checksum - of Core WordPress Files. The admin can check and ignore files as well.
• Two Factor Auth via Email - On login, an email will be sent to the email address of that account with a temporary 6 digit code to complete the login.
• Disable XML-RPC - An option to simply disable XML-RPC in WordPress.
• Disable Pingbacks - Simple way to disable PingBacks.
• Prevent usernames discovery via REST API requests and username enumeration
• Check and/or validate user passwords using Pwned Passwords database and API
• Notifications
• Events logging

Pro Features Web application firewall (WAF)

• Blocks malicious bots and spam
• Blocks SQL injection attacks
• Blocks executable file uploads
• Blocks directory traversal attacks
• Prevents malware infections
• New rules are received automatically
• Does not slow down the website

Easy HTTP Security Headers

• Set X-Frame-Options Header
• Set X-XSS-Protection Header
• Set X-Content-Type-Options Header
• Set Referrer-Policy Header
• Set Strict-Transport-Security Header
• Set Content-Security-Policy Header
• Hide X Powered By Header

Get Support and Pro Version Get professional support from our experts and pro features to take your site's security to the next level with SecurityWP.

Installation from within WordPress

1. Visit Plugins > Add New.
2. Search for SecurityWP.
3. Install and activate the SecurityWP plugin.

Manual installation

1. Upload the entire security-wp folder to the /wp-content/plugins/ directory.
2. Visit Plugins.
3. Activate the SecurityWP plugin.

After activation Several features of SecurityWP depends on the knowledge of remote IP address, so it is important that you let the plugin know how your server is connected to the Internet. You can either set connection type via Setup page or with SECURITY_WP_CONNECTION_TYPE constant.

1.0.2 - 2020-12-26

• Tweak - Improved UI in admin panel.

1.0.1 - 2020-12-23

• Fix - an issue of ‘failed to open stream: No such file or directory’ on some versions of IIS.

1.0.0 - 2020-12-22

• First release