In September, we have compiled 10 Cool WordPress Security Plugins to avoid hackers threats and make your WordPress blog bulletproof than ever before. We all know these days Internet is full of opportunities and free-for-all so you don’t know when the next attack is going to come from.
Today, security and privacy are some of the major concerns and for simple users who don’t code a lot it goes hard to deal with such issues. So, WordPress team has developed many plugins to knock down hackhacker’s attempt.
Here, I have listed “30 More WordPress Security Plugins“ to kick in the hacker’s teeth.
Your participation is equally important for us, so do not forget to share your comments with our readers.
Defensio is an advanced spam filtering web service that learns and adapts to your behaviors and those of your readers.
Fast Secure Contact Form for WordPress. This contact form lets your visitors send you a quick E-mail message. Blocks all common spammer tactics. Spam is no longer a problem. Includes a CAPTCHA and Akismet support. Additionally, the plugin has a multi-form feature, optional extra fields, and an option to redirect visitors to any URL after the message is sent. Super customizable.
The HTTP Authentication plugin allows you to use existing means of authenticating people to WordPress. This includes Apache’s basic HTTP authentication module and many others.
This plugin protects registration, login and comment forms from spambots by adding two extra fields hidden by CSS. This approach gave me 100% anti-spam protection on one of my sites.
Limit Login Attempts: Limit the number of login attempts possible both through normal login as well as (WordPress 2.7+) using auth cookies.
Login LockDown: Login LockDown records the IP address and timestamp of every failed login attempt. If more than a certain number of attempts are detected within a short period of time from the same IP range, then the login function is disabled for all requests from that range. This helps to prevent brute force password discovery.
User Locker: This plugin locks user account after given number of incorrect login attempts. This makes brute force and dictionary attacks nearly impossible.
Math Comment Spam Protection asks the visitor making the comment to answer a simple math question. This is intended to prove that the visitor is a human being and not a spam robot.
Backup, restore, migrate your WordPress installation, both code and MySQL tables, with a single click. When performing a backup, myEASYbackup creates a single file, called “data set”, that includes your data in compressed format (.zip).
There have been many new good ideas of fighting automated Spam in WordPress. Most of these Plugins (like the antecessor of NoSpamNX: Yawasp) change the name of one (or more) of your comment field. On the one hand, this is indeed more effective, but on the other hand, this goes to the expense of compatibility. Therefore, NoSpamNX does not change any of your comment fields, but still claims to be very effective.
reCAPTCHA is an anti-spam method originating from Carnegie Mellon University which uses CAPTCHAs in a genius way. Instead of randomly generating useless characters which users grow tired of continuosly typing in, risking the possibility that spammers will eventually write sophisticated spam bots which use OCR libraries to read the characters, reCAPTCHA uses a different approach.
This plugin creates SQL dumps of your wordpress database. It is based on the WordPress Database Backup plugin but it removes some of the security restrictions in the plugin to enable automated remote backups. You still need the admin user name and password to do a remote backup.
Security your WordPress-Installation and eliminate or replace your wp-version and database-version on easy way with a small plugin.
SecureContact is a drop in form for users to contact you, based on the WP Contact Form plugin by Ryan Duff. It offers enhaced security by using captcha images.
This plugin allows you to upload and download files from outside of your web document root for security purposes. It can be used to can restrict file downloads to users that are logged in, or have a certain user level.
Little help to secure your WordPress installation: Remove Error information on login page; adds index.html to plugin directory; removes the wp-version, except in admin area.
Adds CAPTCHA anti-spam methods to WordPress on the comment form, registration form, login, or all. In order to post comments or register, users will have to type in the code shown on the image. This prevents spam from automated bots. Adds security. Works great with Akismet. Also is fully WP, WPMU, and BuddyPress compatible.
This plugin allows you to create custom URLs for logging in, logging out, administration and registering for your WordPress blog. Instead of advertising your login url on your homepage, you can create a url of your choice that can be easier to remember than wp-login.php.
TAC stands for Theme Authenticity Checker. Currently, TAC searches the source files of every installed theme for signs of malicious code. If such code is found, TAC displays the path to the theme file, the line number, and a small snippet of the suspect code. As of v1.3 TAC also searches for and displays static links.
Plugin helps you identify security problems with your wordpress installation. It scans your blog and give a security grade based on passed tests.
Sends email notifications to the admin if a new version of WordPress available. Notifications about updates for plugins and themes can also be sent.
EZ Backup has been turned into a Simple 1 Click operation. Click the button & watch your Files and Database backup be created. You can Create a backup of ALL your webspace files (wp-root dir) OR backup just your wp-content folder all from this one plugin. Unlike the Full EZ Backup plugin this one does not require any special information such as usernames or passwords and many more.
Monitors your WordPress installation for added/deleted/changed files. When a change is detected an email alert can be sent to a specified address.
This WordPress plugin investigates web requests with simple WordPress-specific heuristics to identify and stop most obvious attacks. There exist a few powerful generic modules that do this; but they’re not always installed on web servers, and difficult to configure.
wp-dephorm protects your users from the prying eyes of phorm. This is achieved by setting a cookie to opt out of the phorm information mining. Your blog viewers will not have their information stored and used in marketing campaigns whilst viewing your site.
WP Email Guard protects your email addresses included on any post or page from being crawled by spammers.
Scans your WordPress installation for security vulnerabilities and suggests corrective actions.
-WordPress admin protection/security
-removes WP Generator META tag from core code
This is a simple plugin to allow for access-restricted posting, allowing bloggers to discuss sensitive subjects without Google or the world finding the post.
Ban users by IP, IP Range, host name and referer url from visiting your WordPress’s blog. It will display a custom ban message when the banned IP, IP range, host name or referer url trys to visit you blog. You can also exclude certain IPs from being banned. There will be statistics recordered on how many times they attemp to visit your blog. It allows wildcard matching too.
Allows you to optimize database, repair database, backup database, restore database, delete backup database , drop/empty tables and run selected queries. Supports automatic scheduling of backing up and optimizing of database.
WP-DB-Backup allows you easily to backup your core WordPress database tables. You may also backup other tables in the same database.