Features

Basic Authentication

Add HTTP Basic Authentication to your login page to block unauthorized access before the WordPress login form is even displayed.

API Protection

Learn how to secure your site at the API level with selective endpoint blocking, rate limiting, and user enumeration prevention for REST API endpoints.

Brute-Force Protection

Learn how to protect your site from password brute-force attacks by limiting login attempts and automatically blocking offending IP addresses.

Email Notification Settings

Configure email notifications for security events to monitor unauthorized access and threats in real time.

File Integrity Monitoring

Detect tampering with WordPress core files, themes, and plugins with precision using SHA-256 hash comparison.

IP Address Restriction

Restrict login access to specific trusted IP addresses to block unauthorized access to your site.

Login URL Change

Learn how to change the default WordPress login URL to hide your login page from attackers and bots.

Email Authentication (OTP)

Learn how to set up and manage two-factor authentication using one-time passwords delivered via email.

reCAPTCHA Integration

Learn how to configure Google reCAPTCHA v2/v3 to automatically block bot-driven login attempts.

Security Header Settings

A Pro feature that lets you configure CSP, HSTS, and other security headers from the admin dashboard. Learn how to safely deploy headers using Smart Scan and Learning Mode.