WordPress plugin providing security functionality, plays nicely with Fail2ban and Cloudflare. Verified with WordPress 5.8.

Simple Wordpress Enumeration Tool.

A tool to list plugins installed on a wordpress powered website.

.htaccess files to secure Wordpress and Site.pro sites.

WordPress plugin that prevents specific error messages from being displayed when a user enters an invalid username, email or password.

Wordpress Two-Factor plugin extension for Notakey push based authentication

Wordpress plugin set basic security option

Check your WordPress website for headers that are common for security purposes.

Plugin Extension for "IP Location Block" WordPress plugin (https://github.com/gdarko/ip-location-block), selective allowing administrators by dynamic/static DNS domain, country, intenet provider or IP

Uncomplicated 2FA plugin for WordPress

WordPress Security Advisories. Add this package to prevent vulnerable WordPress packages from being installed.

WordPress Usernames Enumerator

wordpress security best practice

Remove WP version from meta tags, RSS feeds, scripts and stylesheets with this simple yet efficient code snippet.

WordPress Firewall

Best .htaccess Snippets to Improve WordPress Security | .htaccess file for highspeed and security

"The Crusader" is a powerful Python script that scans web servers and WordPress installations for malware and other types of malicious software. It sends an alert email and text message to the website owner if it finds any issues. This tool helps cybersecurity analysts to protect their web assets and prevent cyber attacks.

WPUserFinder is an Open-Source Intelligence (OSINT) tool designed to enumerate users on a WordPress website. It uses the WordPress REST API to fetch user and author information and provides an option to save the results to a text fil

Security-focused structural boilerplate for any WordPress webs. Opinionated features that might not work with any hosting. Only use if you know what you are doing and are comfortable editing server files.

Protect your blog from viruses, trojans, and other kinds of malware. The plugin sends all uploads to the attachmentAV API to scan for malware with Sophos and blocks infected files.