Beschreibung
WordPress Firewall, Advanced SQL Injection, Cross Site Scripting, Remote File Inclusion, Brute Force Login Security, Spam Protection & Limit Login Attempts for Login Protection, IP Blocking, Database backup, protect site from hacks and malware. Brute Force protection, anti spam & Limit Login Attempts provides Login Security, Registrations Security, Brute Force attacks protection, IP monitoring and IP Blacklisting, strong passwords enforcement. Brute Force login attack can be conducted in number of ways. We provide you enterprise level security, protecting your WP website from hackers and malwares.
Features :-
- Firewall – WordPress Firewall is built specifically for WordPress and blocks malicious traffic on your WordPress Site.Protects from Advanced SQL injection, Cross-site Scripting, Remote-File inclusion, Local File Inclusion and other attacks.
- Malware Scanner – The scanner will scan all the files including WordPress core, plugins and theme files to know if any of them have malware and malicious URLs.
- Realtime Global IP blocking – It protects from malicious IPs and lets the genuine traffic on your WordPress.
- Rate Limiting – It controlling the amount of incoming requests from a specific IP to a service(Website).
- Login Security – Limit Login Attempts and track user login attempts
- User Registration Security – Disallow Disposable / Fake email addresses
- Brute Force Login / Attacks Protection – We keep track of user’s login attempts and we send alerts to administrators for unusual activities if someone exceeds allowed failed login attempts.
- Password protection – Enforce Strong Password – Check Password strength for all users
- IP Blocking – Manual and automatic blocking of IP’s ( Blacklisting and whitelisting included ).
- 2 Step Verification (Two Factor) – Rather than relying on a password alone, which can be phished or guessed, Two Factor authentication adds a second layer of security to your accounts.
- Risk Based Access – Dynamically analyzes user requests and apply business security policies to application access which minimizes the risks of unauthorized access.
- Advanced User Verification – OTP Verification plugin verifies Email Address/Mobile Number of users by sending verification code(OTP) during registration. It removes the possibility of a user registering with fake Email Address/Mobile Number.
- Protection for WordPress files – We provide you option to prevent access to user from browsing directory content and editing files from WP Dashboard (Themes and plugins).
- Google reCAPTCHA protection for login, registration.
- Encrypted Database and File Backup – Backup your WordPress database files easily with a single click. You can either download your backup or can save it on your server.
- Cloud Backups : Store it in cloud storage or remote locations like Google Drive, Amazon S3, DropBox and others.
- One-Click Restore : File restoring made easy with just One-Click Restore.
Advanced Features :-
- Advanced Blocking – Block users based on: IP range, Country, Browser / User Agent, Referer and HostName(DNS)
- Htaccess Website Security Protection- Secure your website from unintended user with htaccess website security protection which blocks user request on server(apache) level.
- IP Lookup ( WHOIS ) – With IP Lookup you can trace IP address of an suspicious users, you can get an idea what part of the country or world they are accessing your website from.
- Security Log – Logs Blocked IPs, Spammers, Bots, HTTP 404,403 and 400 logging
- Comment SPAM Filter and Site SPAM Check – We check if your website is generating SPAM to protect your website getting blocked by search engines. Also we help you to filter comments for malware and phishing urls.
- SPAM Protection and google reCAPTCHA for comments – Google reCAPTCHA protects your website from spam and abuse. reCAPTCHA uses an advanced risk analysis engine and adaptive CAPTCHAs to keep automated software from engaging in abusive activities on your site.
- Notification to admin and end users – Send Email Alerts for IP blocking and unusual activities with user account
- DOS (Denial of service) attacks protection – Protect your resources from DOS attacks by slowing down attackers by delaying response and increasing delay in each of his requests and eventually blocking them entirely.
- Country Blocking – If you have a website which gets inundated with SPAM or hacking attempts from visitors or bots originating from certain countries we can help you blocking those attempts.
- Notifications – Get email alerts for unusual activities with you user accounts. We also support customized email templates which you can use for branding.
LIMIT LOGIN ATTEMPTS
This protects your site from attacks which tries to gain access / login to a site with random usernames and passwords. A Brute Force Attack is the simplest kind of method to gain access to a website. Hackers tries with random usernames and passwords, over and over again, until they gets in. Most of the time such attacks are automated allowing the hackers to try millions of time in a short span.
We help you protect your website against brute force login attacks by blocking an IP address of the hacker after a specified limit of failed login attempts within a specified time.
LIVE TRAFFIC AND AUDIT
Our advanced reporting help you keep track of activities on your website. Keep Real-time watch on traffic and get details on every request. Also you get the option for filtering reports with various criterias like username, IP address, date. Also you can export reports in csv and pdf.
VERIFY EMAIL
miniOrange email verification tool actually connects to the mail server of user registering and checks whether the mailbox exists or not. This decreases bounce rate from your email address and saves your email address getting blacklisted.
BLOCK REGISTRATIONS FROM FAKE USERS
We helps you to detect suspicious email addresses instantly. Most of the users use disposable,fake or temporary email addresses for registering on online websites. We help you stop accepting registrations from those emails.
SOCIAL LOGIN INTEGRATION
Social Login allows your visitors to choose from their favourite social login apps to login, comment, share and optionally auto-register with your website or blog. One-click login to your website using social login applications like Google, Twitter, Facebook, Vkontakte, LinkedIn, Instagram, Amazon, Salesforce, Windows Live. Easy integration with your website with options to add Social login on login page, registration page and comments section.
= How is miniOrange Different?=
miniOrange has various types of deployments that gives the customer a safe and protective choice. miniOrange offers plugin, Cloud and On-premise server module. The plugin will block all incoming requests on the network where the website is hosted. You can block the request before reaching the server with the network solutions. Adding to this miniOrange also provides Login Protection and 2FA built specifically for CMS such as WordPress, Drupal, and others. And keeping backups are essential so that you can fall back in case of any loss or modification of data intentionally or unintentionally. miniOrange provides encrypted backups for file and database with one-click recovery.
=miniOrange provides three levels of solutions to which owners can decide which solution would be the best for them=
- WordPress-Level Web Application Firewall
- Server Level On-premise WAF
- Server Level Cloud-based WAF
Do you want support?
Please email us at info@xecurify.com or Contact us
Screenshots
Installation
From your WordPress dashboard
- Visit
Plugins > Add New
- Search for
Brute Force Login Security, Spam Protection & Limit Login Attempts
. Find and install the plugin. - Activate the plugin from your Plugins page
From WordPress.org
- Download
Brute Force Login Security, Spam Protection & Limit Login Attempts
plugin. - Unzip and upload the
wp-security-pro
directory to your/wp-content/plugins/
directory. - Activate plugin from your wordpress dashboard.
Once Activated
- Go to
Settings-> WP Security PRO
, and follow the instructions. - Click on
Save
Rezensionen
Mitwirkende & Entwickler
„WordPress Security – Firewall, Malware Scanner, Secure Login and Backup“ ist Open-Source-Software. Folgende Menschen haben an diesem Plugin mitgewirkt:
MitwirkendeInteressiert an der Entwicklung?
Durchstöbere den Code, sieh dir das SVN Repository an oder abonniere das Entwicklungsprotokoll per RSS.
Änderungsprotokoll
4.0.3
- Web Application Firewall: New Features Information Update.