Yes, Fail2WP is free to use. It is available as a free plugin on WordPress.org.

How many websites use Fail2WP?

Fail2WP has 100 active installations as tracked by WordPress.org.

What are the best Fail2WP alternatives?

Popular alternatives to Fail2WP include Loginizer, Redux Framework, LightStart – Maintenance Mode, Coming…. You can compare them side-by-side on our comparison pages.

Does Fail2WP work with the latest WordPress?

Fail2WP has been tested up to WordPress 6.9.4. It requires WordPress 5.4.0+ and PHP 7.4+.

PluginSift

Fail2WP

Name: Fail2WP
Rating: 5 (2 reviews)
Author: joho68

Security plugin for WordPress with support for fail2ban. Tested with WordPress 5.5+ and PHP 7.4-8.4

By joho68·Admin·Free

5(2 reviews)

·100 active installs·Updated 2 weeks ago

Download Visit Homepage Compare

As of April 2026, Fail2WP is a WordPress admin plugin with 100 active installations and a 5/5 rating from 2 reviews. It has been downloaded 3.5K+ times in total. Requires WordPress 5.4.0+ and PHP 7.4+. Available on WordPress.org since 2021. Actively maintained — updated within the last month. Top alternative: Loginizer.

5/52 reviews

100active installs

3.5K+total downloads

5 yearssince 2021

Overview

This WordPress plugin provides security functionality and integration with fail2ban.

It does not require fail2ban to function.

Basic security functionality includes:

Disabling login with username (require e-mail address)
Allow/Deny login from IP address, hostname (including wildcard support)
Preventing user enumeration (?author=nnn)
Less detailed error messages on login failures
Minimum username length
Blocking specific usernames from being used to register new users
Requiring e-mail address matching for new user registrations
Warning about new user role setting
Blocking of portions or all of WordPress REST API
Disabling of RSS and Atom feeds
Removal of “Generator” information from HTML and feeds
Detection of Cloudflare IP addresses for logging of actual IP addresses
Blocking…

Read full description on WordPress.org

Ratings & Reviews

52 reviews

5 ★

4 ★

3 ★

2 ★

1 ★

Compatibility

WordPress	5.4.0+ requiredTested up to 6.9.4
PHP	7.4+ required

Top Alternatives to Fail2WP

Loginizer

4.81.0M+ installsUpdated 1 month ago

View Compare

Redux Framework

4.41.0M+ installsUpdated 1 week ago

View Compare

LightStart – Maintenance Mode, Coming…

4.3500K+ installsUpdated 2 weeks ago

View Compare

Admin Menu Editor

4.6400K+ installsUpdated 1 month ago

View Compare

White Label CMS

4.7200K+ installsUpdated 11 months ago

View Compare

View all admin plugins →

Frequently Asked Questions

Changelog

1.2.6

Fixed a nasty REST API regression that could log Blocked REST API request even when the REST block settings were not enabled
Fixed the same regression so ordinary unauthenticated REST namespace requests are no longer treated as blocked just because user enumeration protection is active
Fixed blocked REST API logging so it now respects the “Log blocked requests” setting consistently
Verified with WordPress 6.9
Updated internal version metadata

View full changelog on WordPress.org

Contributors

joho68

WebbPlatsen

Plugin data sourced from WordPress.org. Analysis and metrics by PluginSift.

Fail2WP

Security plugin for WordPress with support for fail2ban. Tested with WordPress 5.5+ and PHP 7.4-8.4

By joho68·Admin·Free

5(2 reviews)

·100 active installs·Updated 2 weeks ago

Download Visit Homepage Compare

5/52 reviews

100active installs

3.5K+total downloads

5 yearssince 2021

Overview

This WordPress plugin provides security functionality and integration with fail2ban.

It does not require fail2ban to function.

Basic security functionality includes:

Disabling login with username (require e-mail address)
Allow/Deny login from IP address, hostname (including wildcard support)
Preventing user enumeration (?author=nnn)
Less detailed error messages on login failures
Minimum username length
Blocking specific usernames from being used to register new users
Requiring e-mail address matching for new user registrations
Warning about new user role setting
Blocking of portions or all of WordPress REST API
Disabling of RSS and Atom feeds
Removal of “Generator” information from HTML and feeds
Detection of Cloudflare IP addresses for logging of actual IP addresses
Blocking…

Read full description on WordPress.org

Ratings & Reviews

52 reviews

5 ★

4 ★

3 ★

2 ★

1 ★

Compatibility

WordPress	5.4.0+ requiredTested up to 6.9.4
PHP	7.4+ required

Top Alternatives to Fail2WP

Loginizer

4.81.0M+ installsUpdated 1 month ago

View Compare

Redux Framework

4.41.0M+ installsUpdated 1 week ago

View Compare

LightStart – Maintenance Mode, Coming…

4.3500K+ installsUpdated 2 weeks ago

View Compare

Admin Menu Editor

4.6400K+ installsUpdated 1 month ago

View Compare

White Label CMS

4.7200K+ installsUpdated 11 months ago

View Compare

View all admin plugins →

Frequently Asked Questions

Changelog

1.2.6

Fixed a nasty REST API regression that could log Blocked REST API request even when the REST block settings were not enabled
Fixed the same regression so ordinary unauthenticated REST namespace requests are no longer treated as blocked just because user enumeration protection is active
Fixed blocked REST API logging so it now respects the “Log blocked requests” setting consistently
Verified with WordPress 6.9
Updated internal version metadata

View full changelog on WordPress.org

Contributors

joho68

WebbPlatsen

Plugin data sourced from WordPress.org. Analysis and metrics by PluginSift.

Fail2WP

Overview

Ratings & Reviews

Compatibility

Top Alternatives to Fail2WP

Frequently Asked Questions

Is Fail2WP free?

How many websites use Fail2WP?

What are the best Fail2WP alternatives?

Does Fail2WP work with the latest WordPress?

Changelog

1.2.6

Contributors

Fail2WP

Overview

Ratings & Reviews

Compatibility

Top Alternatives to Fail2WP

Frequently Asked Questions

Is Fail2WP free?

How many websites use Fail2WP?

What are the best Fail2WP alternatives?

Does Fail2WP work with the latest WordPress?

Changelog

1.2.6

Contributors