Why WordPress Security Important to You?
Appricolt WP Security is a trusted security plugin that helps you prevent common hacker bots attacks on your WordPress site. The plugin adds filters and security layers to prevent Script and SQL Injection, Brute Force attacks, XML-RPC attacks, and more.
- Stop hackers from accessing your sensitive information
- Prevent crashing or slowing your website down
- Protect your customers’ data
Plugin Features
- Custom wp-admin URL & wp-login Paths
- Hide wp-admin
- Hide wp-login
- Hide Language select from Login Page
- Change Author Path
- Hide Author ID
- Change Lost Password Path
- Change Register Path
- Change Logout Path
- Change Activation Path
- Change admin-ajax.php Path
- Change Paths in Ajax Calls
- Hide wp-admin from non-admin users
- Change wp-content Path
- Change wp-includes Path
- Change wp-content/uploads Path
- Change comments Path
- Change Plugins Path
- Change Themes Path
- Hide WP headers
- Customize each plugin name
- Customize each theme name
- Hide WordPress Old Plugins Path
- Hide WordPress Old Themes Path
- Change REST API Path
- Hide REST API URL Link
- Disable XML-RPC access
- Hide RSD (Really Simple Discovery) endpoint
- Hide WordPress Common Paths
- Hide WordPress Common Files
- Firewall Against SQL & Script Injection
- 6G Firewall & 7G Firewall Protection
- Restrict Theme Detectors access
- Disable Directory Browsing
- Redirect Hidden Paths
- Login Redirect URL
- Logout Redirect URL
- Change Paths for Logged Users
- Change Paths in Cached Files
- Customize paths
- Two-factor Authentication By Code (2FA)
- Two-factor Authentication By Email (2FA)
- Temporary Logins Without Password
- Change Relative URLs to Absolute URLs
- Hide Feed and Sitemap Link Tags
- Change Paths in RSS Feed
- Change Paths in Sitemaps XML
- Change Paths in Robots.txt
- Hide Admin Toolbar by user role
- Hide Version from Images, CSS & JS URLs
- Hide IDs from META Tags
- Hide WordPress Generator META Tags
- Hide WordPress DNS Prefetch META Tags
- Hide HTML Comments
- Hide Emoji icons
- Disable Embed scripts
- Disable WLW Manifest scripts
- Disable Right-Click
- Disable Inspect Element
- Disable Ctrl+U, Ctrl+I, Ctrl+C & more
- Disable Keys for Logged Users
- Disable View Source
- Disable Copy/Paste
- Disable Drag/Drop Images
- Disable Mouse Right Click
- Disable DB Debug in Frontend
- URL Mapping
- Text Mapping Classes, IDs, JS variables
- CDN URLs Mapping
- Text Mapping in CSS and JS caches files (E)
- Optimize CSS and JS files (E)
- Auto-detect server type
- Geo Security – Country Blocking
- Blacklist IP Addresses
- Block by User Agents, Referrer & Hostname
- Brute Force Protection
- WooCommerce Login Protection
- Math reCAPTCHA Protection
- Google reCAPTCHA v2 Protection
- Google reCAPTCHA v3 Protection
- Ban an IP address or multiple IP addresses
- Whitelist an IP address or multiple IPs
- Blocked IPs Report
- Limit login fail attempts
- Add Security Headers for XSS and Code Injection Attacks
- Whitelist IP addresses and Paths
- Brute force protection for Memberpress, WooCommerce, lost password form & user signup forms
- Prevent Pingbacks
- Cache & Optimize Speed
- Backup/Restore Settings
- Hide WordPress Version Number
- Hide wp-image and wp-post classes
- Custom theme style name
- Custom attempts, lokout message
- Change Category Path
- Change Tags Path
- Custom Safe URL Parameter
- 7G and 8G firewall
- Hide vulnerabilities of core, themes, and plugins
- Sub-option to show a white-screen on inspect element for desktop
Activity Log
- Log Users Events & Events Log report
- Log User Roles
- Accessing the Events Log Report in the Cloud
- Email Alerts Options
- Custom Email Address Notification
Run a Website Security Check
- Detect potential security breaches on your site
- Identify security or access issues on your website before they become a problem
- Determine whether any of your plugins or themes have security vulnerabilities
- Verify your site integrity for you
- Take preventive measures against attacks.
- Changes default database prefix wp_ to a secured one.
- Fixes all directories and files permissions on website.
- Changes salt security keys for better session security.
- Checks and changes weak usernames like “admin”.
- Teaches you how to fix these potential breaches
Log Users Events & Events Log Report
- Find out if someone is trying to hack your site
- Know when a post was deleted, and who deleted it
- Know when a plugin was activated/deactivated, and who did it
- Track your freelancers’ or hired developer’s activities
- Track your multiple blog authors’ activities
- Track who has logged in, when, and with what IP address
- View successful and failed login attempts
- Track which IP address is targeting your login page
- Track which themes, plugins, and core files are updated
- Accessing the Events Log Report in the Cloud
- Disable multiple options (such as right click option, or inspect element option) for specific WP user roles
- Create loginless URLs for temporary access, based on role
- Log events for specific WP user roles (such as editing posts/pages, deleting content, making modifications, etc.)
- User activity logs and suspicious activity alerts
- Disable all HMWP features solely for users with a specific IP (helpful for those working in the same office)