WordPress Security Plugins

This plugin used to apply/add login captcha field to wordpress login form.

AuthSafe is the most trusted online fraud detection solution built for WordPress and WooCommerce. AuthSafe helps customers to protect from account tak …

This plugin forces logged in users to use SSL.

Geosec protects your admin panel (wp-admin) by allowing access only from the countries you authorize.

TotalWeb strengthens your site security with malware defense, brute-force protection, firewall rules, and smart hardening controls.

Login Defender enhances your WordPress site's security by allowing you to change the default login URL.

VESSOT Secure Portable Data - WordPress Plugin Zero visibility data storage with client-side encryption via the VESSOT platform.

Keep your server lean. Set a strict maximum file size for all user uploads except administrators.

Total Control. Zero Clutter. Ultimate Performance. The most comprehensive WordPress admin toolkit.

The ultimate solution to prevent spam comments like a ninja on the default commenting system for WordPress in WordPress.

PF Secure Toolkit is a lightweight, modular plugin to harden WordPress by disabling unnecessary features.

A modern WordPress plugin to manage inactive users, monitor site activity, and keep your site optimized and secure.

Switch on and off code snippets on your site.

Force users to login before viewing pages. Exclude specific pages and allow certain user roles/users to bypass the requirement.

SmartWeb Disable Click by SmartWeb Tech is a lightweight WordPress content protection plugin.

Signed Posts allows authors to sign posts, assuring content integrity. Signature verification proves post-signing alteration hasn't occurred.

Protect WordPress forms from spam using Cloudflare Turnstile. A privacy-friendly CAPTCHA alternative.

A free and lightweight two-factor authentication (2FA) plugin for WordPress using TOTP and authenticator apps.

Generate secure, expiring preview URLs for drafts with role/user restrictions. Compatible with FSE, Block Themes, and Classic Themes.

Defendium is a powerful spam checker plugin for WordPress, integrating with the Defendium API to scrutinize incoming comments for spam.

Serve your WordPress site in SLIM mode — single-request, text-first, and network-resilient.

Choose which top-level WordPress admin menu items are visible, with checkbox controls in Settings.

ShieldSquare plugin provides users access to Dashboards to follow up on traffic and understand bot activity on their websites.

VerifiedVisitors is a powerful AI/ML bot mitigation plugin to support the Wordpress community. It’s an easy to configure platform to defeat bad bots.

Add safe, modern HTTP security headers with optional strict cross-origin protections and a simple admin UI.

Helps site administrators perform a comprehensive checklist and scan after migrating a WordPress website. Identifies issues related to SEO, performanc …

Scan your WordPress site for security risks, speed issues, and migration problems. Free with PageSpeed integration.

A set and forget solution for WordPress security.

OpenPGP signature verification, multi-signer workflows, key lifecycle management, and public proof pages for ArchivioMD.

Add a Host-Header to track down hosting partners in helping combat web spam.

Enterprise-grade WordPress security: WAF, brute force protection, malware scanner, 2FA, honeypots, AI crawler control, and post-breach recovery.

OnGuard is Login Plugin that will challenge suspicious logins by email, send password compromise and new connection emails.

WP security is a plugin responsible by security with short steps and fix the mainly security problems.

Email site administrators about all administrator logins.

A lightweight, zero configuration plugin that removes all WordPress version output from your site for improved security and cleaner markup.