Protection against brute force attacks and bots. Restrict login by IP access lists. Monitor user and bot activity. Limit login attempts. reCAPTCHA.
Protects from brute force attacks by limiting the number of login attempts through the login form, XML-RPC / REST API requests or using auth cookies. Restricts access with the Black IP Access List and the White IP Access List. Tracks user and intruder activity with powerful email, mobile and desktop notifications. Activates reCAPTCHA to protect registration form from spam registrations. Hardening WordPress.
Features you will love
How does WP Cerber protect sites?
By default, WordPress allows unlimited login attempts through the login form, XML-RPC or by sending special cookies. This allows passwords to be cracked with relative ease via brute force attack.
WP Cerber blocks intruders by IP or subnet from making further attempts after a specified limit on retries is reached, making brute force attacks or distributed brute force attacks from botnets impossible.
You will be able to create a Black Access List or White Access List to block or allow logins from particular IP address, IP address range or subnet any class (A,B,C).
Moreover, you can create your Custom login page and forget about automatic attacks to the default wp-login.php, which takes your attention and consumes a lot of server resources. If an attacker tries to access wp-login.php they will be blocked and get a 404 Error response.
WP Cerber tracks time, IP addresses and usernames for successful and failed login attempts, logins, logouts, password changes, blocked IP and actions taken by itself.
You can hide WordPress dashboard (/wp-admin/) when a user isn't logged in. If a user isn't logged in and they attempt to access the dashboard by requesting /wp-admin/, WP Cerber will return a 404 Error.
Massive botnet brute force attack? That's no longer a problem. Citadel mode will automatically be activated for awhile and prevent your site from making further attempts to log in with any username.
Thanks to POEditor.com for helping to translate this project.
There are some semi-similar security plugins you can check out: Login LockDown, Login Security Solution, BruteProtect, Ajax Login & Register, Lockdown WP Admin, BulletProof Security, SiteGuard WP Plugin, All In One WP Security & Firewall, Brute Force Login Protection
Another reliable plugins from the trusted author
Checks plugins for deprecated WordPress functions, known security vulnerabilities and some unsafe PHP functions
Make your website instantly available in 90+ languages with Google Translate Widget. Add the power of Google automatic translations with one click.
Requires: 4.4 or higher
Compatible up to: 4.7.3
Zuletzt aktualisiert: 15 Stunden ago
Aktive Installationen: 20,000+
26 of 35 support threads in the last two months have been marked resolved.
Möchtest du etwas sagen? Brauchst du Unterstützung?