{"id":754,"date":"2013-07-09T09:17:27","date_gmt":"2013-07-09T09:17:27","guid":{"rendered":"https:\/\/wordpress.org\/plugins-wp\/wp-simple-firewall\/"},"modified":"2026-05-25T13:19:41","modified_gmt":"2026-05-25T13:19:41","slug":"wp-simple-firewall","status":"publish","type":"plugin","link":"https:\/\/azb.wordpress.org\/plugins\/wp-simple-firewall\/","author":7994890,"comment_status":"closed","ping_status":"closed","template":"","meta":{"version":"22.0.7","stable_tag":"22.0.7","tested":"7.0","requires":"5.7","requires_php":"7.4","requires_plugins":null,"header_name":"Shield Security","header_author":"Shield Security","header_description":"","assets_banners_color":"2a1d40","last_updated":"2026-05-25 13:19:41","external_support_url":"","external_repository_url":"","donate_link":"https:\/\/clk.shldscrty.com\/bw","header_plugin_uri":"https:\/\/clk.shldscrty.com\/2f","header_author_uri":"https:\/\/clk.shldscrty.com\/bv","rating":4.8,"author_block_rating":0,"active_installs":40000,"downloads":12709713,"num_ratings":1032,"support_threads":2,"support_threads_resolved":2,"author_block_count":0,"sections":["description","installation","faq","changelog"],"tags":{"1.0":{"tag":"1.0","author":"paultgoodchild","date":"2013-07-09 09:21:56"},"1.9.2":{"tag":"1.9.2","author":"paultgoodchild","date":"2013-11-03 13:34:04"},"10.0.3":{"tag":"10.0.3","author":"paultgoodchild","date":"2020-10-24 15:12:22"},"10.1.6":{"tag":"10.1.6","author":"paultgoodchild","date":"2021-02-10 11:46:47"},"10.2.6":{"tag":"10.2.6","author":"paultgoodchild","date":"2021-03-08 17:12:14"},"11.0.3":{"tag":"11.0.3","author":"paultgoodchild","date":"2021-03-26 16:42:24"},"11.1.1":{"tag":"11.1.1","author":"paultgoodchild","date":"2021-04-13 09:22:54"},"11.2.4":{"tag":"11.2.4","author":"paultgoodchild","date":"2021-05-30 08:15:48"},"11.3.0":{"tag":"11.3.0","author":"paultgoodchild","date":"2021-06-07 10:08:19"},"11.4.5":{"tag":"11.4.5","author":"paultgoodchild","date":"2021-07-22 10:40:22"},"11.5.6":{"tag":"11.5.6","author":"paultgoodchild","date":"2021-09-23 09:44:42"},"12.0.13":{"tag":"12.0.13","author":"paultgoodchild","date":"2021-10-10 09:08:12"},"13.0.6":{"tag":"13.0.6","author":"paultgoodchild","date":"2022-01-14 09:35:41"},"14.0.3":{"tag":"14.0.3","author":"paultgoodchild","date":"2022-02-16 09:53:01"},"14.1.7":{"tag":"14.1.7","author":"paultgoodchild","date":"2022-03-25 07:50:01"},"14.9.11":{"tag":"14.9.11","author":"paultgoodchild","date":"2022-05-04 14:02:37"},"15.0.0":{"tag":"15.0.0","author":"paultgoodchild","date":"2022-05-05 11:19:17"},"15.0.13":{"tag":"15.0.13","author":"paultgoodchild","date":"2022-05-19 08:05:04"},"15.1.0":{"tag":"15.1.0","author":"paultgoodchild","date":"2022-06-06 09:02:06"},"15.1.9":{"tag":"15.1.9","author":"paultgoodchild","date":"2022-08-04 13:16:52"},"16.0.9":{"tag":"16.0.9","author":"paultgoodchild","date":"2022-09-07 12:20:31"},"16.1.0":{"tag":"16.1.0","author":"paultgoodchild","date":"2022-09-11 11:35:01"},"16.1.15":{"tag":"16.1.15","author":"paultgoodchild","date":"2023-02-08 21:41:43"},"17.0.0":{"tag":"17.0.0","author":"paultgoodchild","date":"2023-02-10 15:24:14"},"17.0.19":{"tag":"17.0.19","author":"paultgoodchild","date":"2023-03-24 12:23:26"},"18.0.6":{"tag":"18.0.6","author":"paultgoodchild","date":"2023-04-26 08:50:09"},"18.1.2":{"tag":"18.1.2","author":"paultgoodchild","date":"2023-06-08 09:08:56"},"18.2.11":{"tag":"18.2.11","author":"paultgoodchild","date":"2023-08-29 12:08:27"},"18.3.9":{"tag":"18.3.9","author":"paultgoodchild","date":"2023-09-20 13:32:29"},"18.4.0":{"tag":"18.4.0","author":"paultgoodchild","date":"2023-09-22 11:20:43"},"18.4.6":{"tag":"18.4.6","author":"paultgoodchild","date":"2023-11-07 13:35:45"},"18.5.0":{"tag":"18.5.0","author":"paultgoodchild","date":"2023-11-10 13:16:42"},"18.5.10":{"tag":"18.5.10","author":"paultgoodchild","date":"2023-12-23 17:03:56"},"19.0.1":{"tag":"19.0.1","author":"paultgoodchild","date":"2024-01-30 09:55:40"},"19.0.7":{"tag":"19.0.7","author":"paultgoodchild","date":"2024-02-12 10:50:57"},"19.1.0":{"tag":"19.1.0","author":"paultgoodchild","date":"2024-03-19 14:38:55"},"19.1.19":{"tag":"19.1.19","author":"paultgoodchild","date":"2024-07-16 07:34:28"},"2.0.0":{"tag":"2.0.0","author":"paultgoodchild","date":"2013-11-05 15:07:16"},"2.6.6":{"tag":"2.6.6","author":"paultgoodchild","date":"2014-06-17 15:35:38"},"20.0.0":{"tag":"20.0.0","author":"paultgoodchild","date":"2024-07-16 11:24:05"},"20.0.1":{"tag":"20.0.1","author":"paultgoodchild","date":"2024-07-19 13:59:05"},"20.0.10":{"tag":"20.0.10","author":"paultgoodchild","date":"2024-09-17 09:12:08"},"20.0.11":{"tag":"20.0.11","author":"paultgoodchild","date":"2024-11-24 14:36:11"},"20.0.12":{"tag":"20.0.12","author":"paultgoodchild","date":"2024-12-03 10:13:36"},"20.0.2":{"tag":"20.0.2","author":"paultgoodchild","date":"2024-07-22 11:22:42"},"20.0.3":{"tag":"20.0.3","author":"paultgoodchild","date":"2024-07-23 08:18:26"},"20.0.4":{"tag":"20.0.4","author":"paultgoodchild","date":"2024-07-26 08:19:03"},"20.0.5":{"tag":"20.0.5","author":"paultgoodchild","date":"2024-07-28 07:05:01"},"20.0.6":{"tag":"20.0.6","author":"paultgoodchild","date":"2024-07-29 15:32:31"},"20.0.7":{"tag":"20.0.7","author":"paultgoodchild","date":"2024-08-11 10:12:08"},"20.0.8":{"tag":"20.0.8","author":"paultgoodchild","date":"2024-08-29 09:32:36"},"20.0.9":{"tag":"20.0.9","author":"paultgoodchild","date":"2024-09-16 08:55:15"},"20.1.2":{"tag":"20.1.2","author":"paultgoodchild","date":"2024-12-10 10:14:40"},"20.1.3":{"tag":"20.1.3","author":"paultgoodchild","date":"2025-02-24 11:28:46"},"20.1.4":{"tag":"20.1.4","author":"paultgoodchild","date":"2025-02-24 14:33:52"},"20.1.5":{"tag":"20.1.5","author":"paultgoodchild","date":"2025-02-25 14:16:41"},"20.1.6":{"tag":"20.1.6","author":"paultgoodchild","date":"2025-03-20 15:47:34"},"20.1.7":{"tag":"20.1.7","author":"paultgoodchild","date":"2025-03-21 16:28:24"},"20.1.8":{"tag":"20.1.8","author":"paultgoodchild","date":"2025-04-08 08:46:58"},"20.1.9":{"tag":"20.1.9","author":"paultgoodchild","date":"2025-04-10 12:09:59"},"21.0.10":{"tag":"21.0.10","author":"paultgoodchild","date":"2026-01-13 13:34:28"},"21.0.2":{"tag":"21.0.2","author":"paultgoodchild","date":"2025-05-15 13:39:01"},"21.0.3":{"tag":"21.0.3","author":"paultgoodchild","date":"2025-05-19 11:48:33"},"21.0.6":{"tag":"21.0.6","author":"paultgoodchild","date":"2025-06-02 13:20:42"},"21.0.7":{"tag":"21.0.7","author":"paultgoodchild","date":"2025-12-05 10:06:33"},"21.0.8":{"tag":"21.0.8","author":"paultgoodchild","date":"2025-12-11 20:10:04"},"21.0.9":{"tag":"21.0.9","author":"paultgoodchild","date":"2026-01-12 14:10:04"},"21.1.13":{"tag":"21.1.13","author":"paultgoodchild","date":"2026-02-16 12:11:12"},"21.2.0":{"tag":"21.2.0","author":"paultgoodchild","date":"2026-02-16 12:47:46"},"21.2.1":{"tag":"21.2.1","author":"paultgoodchild","date":"2026-02-17 10:31:21"},"21.2.2":{"tag":"21.2.2","author":"paultgoodchild","date":"2026-02-18 10:13:36"},"21.2.3":{"tag":"21.2.3","author":"paultgoodchild","date":"2026-02-25 12:03:58"},"21.2.4":{"tag":"21.2.4","author":"paultgoodchild","date":"2026-02-25 12:47:15"},"21.2.5":{"tag":"21.2.5","author":"paultgoodchild","date":"2026-02-27 12:17:50"},"21.2.6":{"tag":"21.2.6","author":"paultgoodchild","date":"2026-03-05 10:26:15"},"21.2.7":{"tag":"21.2.7","author":"paultgoodchild","date":"2026-04-21 19:53:47"},"22.0.0":{"tag":"22.0.0","author":"paultgoodchild","date":"2026-05-12 09:47:11"},"22.0.4":{"tag":"22.0.4","author":"paultgoodchild","date":"2026-05-20 13:25:10"},"22.0.5":{"tag":"22.0.5","author":"paultgoodchild","date":"2026-05-21 12:59:43"},"22.0.7":{"tag":"22.0.7","author":"paultgoodchild","date":"2026-05-25 13:19:41"},"3.0.0":{"tag":"3.0.0","author":"paultgoodchild","date":"2014-06-26 09:28:07"},"3.5.5":{"tag":"3.5.5","author":"paultgoodchild","date":"2014-09-22 14:39:03"},"4.0.0":{"tag":"4.0.0","author":"paultgoodchild","date":"2014-09-30 11:04:05"},"4.17.0":{"tag":"4.17.0","author":"paultgoodchild","date":"2016-02-17 09:35:08"},"5.0.0":{"tag":"5.0.0","author":"paultgoodchild","date":"2016-03-01 15:18:32"},"5.20.1":{"tag":"5.20.1","author":"paultgoodchild","date":"2017-12-11 12:54:02"},"6.0.0":{"tag":"6.0.0","author":"paultgoodchild","date":"2017-12-18 10:21:44"},"6.1.1":{"tag":"6.1.1","author":"paultgoodchild","date":"2018-01-17 21:57:13"},"6.10.9":{"tag":"6.10.9","author":"paultgoodchild","date":"2018-12-07 10:09:36"},"6.2.2":{"tag":"6.2.2","author":"paultgoodchild","date":"2018-02-02 09:22:54"},"6.3.3":{"tag":"6.3.3","author":"paultgoodchild","date":"2018-02-21 08:07:43"},"6.4.4":{"tag":"6.4.4","author":"paultgoodchild","date":"2018-02-27 08:44:41"},"6.5.0":{"tag":"6.5.0","author":"paultgoodchild","date":"2018-03-05 08:06:00"},"6.6.8":{"tag":"6.6.8","author":"paultgoodchild","date":"2018-05-04 13:04:40"},"6.7.2":{"tag":"6.7.2","author":"paultgoodchild","date":"2018-05-30 06:54:54"},"6.8.2":{"tag":"6.8.2","author":"paultgoodchild","date":"2018-06-22 08:03:36"},"6.9.4":{"tag":"6.9.4","author":"paultgoodchild","date":"2018-09-13 08:13:51"},"7.0.0":{"tag":"7.0.0","author":"paultgoodchild","date":"2019-01-28 12:57:55"},"7.0.4":{"tag":"7.0.4","author":"paultgoodchild","date":"2019-02-12 09:01:44"},"7.1.2":{"tag":"7.1.2","author":"paultgoodchild","date":"2019-02-28 11:40:18"},"7.2.3":{"tag":"7.2.3","author":"paultgoodchild","date":"2019-03-25 09:18:08"},"7.3.2":{"tag":"7.3.2","author":"paultgoodchild","date":"2019-04-18 12:12:00"},"7.4.2":{"tag":"7.4.2","author":"paultgoodchild","date":"2019-05-30 13:48:43"},"8.0.0":{"tag":"8.0.0","author":"paultgoodchild","date":"2019-08-27 09:20:28"},"8.0.2":{"tag":"8.0.2","author":"paultgoodchild","date":"2019-09-05 08:47:30"},"8.1.1":{"tag":"8.1.1","author":"paultgoodchild","date":"2019-09-18 13:52:15"},"8.2.3":{"tag":"8.2.3","author":"paultgoodchild","date":"2019-10-25 08:02:20"},"8.3.0":{"tag":"8.3.0","author":"paultgoodchild","date":"2019-11-18 09:58:38"},"8.4.4":{"tag":"8.4.4","author":"paultgoodchild","date":"2019-12-06 11:02:02"},"8.5.7":{"tag":"8.5.7","author":"paultgoodchild","date":"2020-02-10 14:13:58"},"8.6.3":{"tag":"8.6.3","author":"paultgoodchild","date":"2020-02-25 12:55:48"},"8.7.0":{"tag":"8.7.0","author":"paultgoodchild","date":"2020-03-16 09:27:29"},"9.0.4":{"tag":"9.0.4","author":"paultgoodchild","date":"2020-06-05 09:47:46"},"9.1.0":{"tag":"9.1.0","author":"paultgoodchild","date":"2020-08-12 08:17:22"},"9.2.1":{"tag":"9.2.1","author":"paultgoodchild","date":"2020-10-14 13:49:08"}},"upgrade_notice":[],"ratings":{"1":21,"2":9,"3":11,"4":26,"5":965},"assets_icons":{"icon-128x128.png":{"filename":"icon-128x128.png","revision":3054572,"resolution":"128x128","location":"assets","locale":"","width":128,"height":128},"icon-256x256.png":{"filename":"icon-256x256.png","revision":3054572,"resolution":"256x256","location":"assets","locale":"","width":256,"height":256}},"assets_banners":{"banner-1544x500.png":{"filename":"banner-1544x500.png","revision":3512874,"resolution":"1544x500","location":"assets","locale":"","width":1544,"height":500},"banner-772x250.png":{"filename":"banner-772x250.png","revision":3512874,"resolution":"772x250","location":"assets","locale":"","width":772,"height":250}},"assets_blueprints":{"blueprint.json":{"filename":"blueprint.json","revision":3547668,"resolution":false,"location":"assets","locale":"","contents":"{\"$schema\":\"https:\\\/\\\/playground.wordpress.net\\\/blueprint-schema.json\",\"landingPage\":\"\\\/wp-admin\\\/admin.php?page=icwp-wpsf-plugin&nav=dashboard&nav_sub=overview\",\"preferredVersions\":{\"php\":\"8.2\",\"wp\":\"latest\"},\"steps\":[{\"step\":\"installPlugin\",\"options\":{\"activate\":true},\"pluginData\":{\"resource\":\"wordpress.org\\\/plugins\",\"slug\":\"wp-simple-firewall\"}},{\"step\":\"login\",\"username\":\"admin\",\"password\":\"password\"}]}"}},"all_blocks":[],"tagged_versions":["1.0","1.9.2","10.0.3","10.1.6","10.2.6","11.0.3","11.1.1","11.2.4","11.3.0","11.4.5","11.5.6","12.0.13","13.0.6","14.0.3","14.1.7","14.9.11","15.0.0","15.0.13","15.1.0","15.1.9","16.0.9","16.1.0","16.1.15","17.0.0","17.0.19","18.0.6","18.1.2","18.2.11","18.3.9","18.4.0","18.4.6","18.5.0","18.5.10","19.0.1","19.0.7","19.1.0","19.1.19","2.0.0","2.6.6","20.0.0","20.0.1","20.0.10","20.0.11","20.0.12","20.0.2","20.0.3","20.0.4","20.0.5","20.0.6","20.0.7","20.0.8","20.0.9","20.1.2","20.1.3","20.1.4","20.1.5","20.1.6","20.1.7","20.1.8","20.1.9","21.0.10","21.0.2","21.0.3","21.0.6","21.0.7","21.0.8","21.0.9","21.1.13","21.2.0","21.2.1","21.2.2","21.2.3","21.2.4","21.2.5","21.2.6","21.2.7","22.0.0","22.0.4","22.0.5","22.0.7","3.0.0","3.5.5","4.0.0","4.17.0","5.0.0","5.20.1","6.0.0","6.1.1","6.10.9","6.2.2","6.3.3","6.4.4","6.5.0","6.6.8","6.7.2","6.8.2","6.9.4","7.0.0","7.0.4","7.1.2","7.2.3","7.3.2","7.4.2","8.0.0","8.0.2","8.1.1","8.2.3","8.3.0","8.4.4","8.5.7","8.6.3","8.7.0","9.0.4","9.1.0","9.2.1"],"block_files":[],"assets_screenshots":{"screenshot-1.png":{"filename":"screenshot-1.png","revision":3540047,"resolution":"1","location":"assets","locale":"","width":2110,"height":1459}},"screenshots":{"1":"Security overview with current site status, important recommendations, and recent security events.","2":"IP Rules and investigation tools for reviewing blocked, bypassed, or suspicious visitors.","3":"Activity Log for authentication events, user changes, and plugin or theme activity.","4":"User session and login security controls for hardening accounts and access.","5":"Configuration screens for firewall, scans, login protection, and advanced settings."}},"plugin_section":[262246],"plugin_tags":[9211,8531,4866,1174,600],"plugin_category":[38,54],"plugin_contributors":[196120,78430],"plugin_business_model":[],"class_list":["post-754","plugin","type-plugin","status-publish","hentry","plugin_section-dashboard-widgets","plugin_tags-2fa","plugin_tags-activity-log","plugin_tags-bots","plugin_tags-firewall","plugin_tags-security","plugin_category-authentication","plugin_category-security-and-spam-protection","plugin_contributors-getshieldsecurity","plugin_contributors-paultgoodchild","plugin_committers-onedollarplugin","plugin_committers-paultgoodchild","plugin_support_reps-jmisic"],"banners":{"banner":"https:\/\/ps.w.org\/wp-simple-firewall\/assets\/banner-772x250.png?rev=3512874","banner_2x":"https:\/\/ps.w.org\/wp-simple-firewall\/assets\/banner-1544x500.png?rev=3512874","banner_rtl":false,"banner_2x_rtl":false},"icons":{"svg":false,"icon":"https:\/\/ps.w.org\/wp-simple-firewall\/assets\/icon-128x128.png?rev=3054572","icon_2x":"https:\/\/ps.w.org\/wp-simple-firewall\/assets\/icon-256x256.png?rev=3054572","generated":false},"screenshots":[{"src":"https:\/\/ps.w.org\/wp-simple-firewall\/assets\/screenshot-1.png?rev=3540047","caption":"Security overview with current site status, important recommendations, and recent security events."}],"raw_content":"<!--section=description-->\n<p>Most security plugins hand you a dashboard full of alerts and expect you to know what to do next. Shield works differently.<\/p>\n\n<p>It blocks threats automatically, repairs what it can on its own, and then <strong>shows you exactly what still needs your attention<\/strong> \u2014 ranked by impact, not volume. Less noise. More action.<\/p>\n\n<h4>\ud83e\udd16 Security That Runs Itself<\/h4>\n\n<p>The most powerful thing Shield does is what it handles without you:<\/p>\n\n<ul>\n<li><strong>Automatic IP Blocking<\/strong> \u2014 every visitor is quietly scored as they interact with your site. Failed logins, firewall blocks, silentCAPTCHA failures, and other signals accumulate into a reputation score. When a visitor's score crosses the threshold, Shield blocks them \u2014 automatically, without you lifting a finger<\/li>\n<li><strong>Automatic File Repair<\/strong> \u2014 when a file integrity scan finds a changed WordPress core file, Shield pulls the original from WordPress.org and restores it. Detected and fixed, without waiting for you to act<\/li>\n<li><strong>Automatic Bot Recognition<\/strong> \u2014 Shield identifies legitimate crawlers (Google, Bing, DuckDuckGo, Yandex, Apple) and known services (ManageWP, Pingdom, Stripe, CloudFlare) and never blocks them. Your SEO and monitoring tools keep working<\/li>\n<\/ul>\n\n<h4>\ud83e\udded Guided Security, Not Just a Dashboard<\/h4>\n\n<p>Shield organises your security into four focused areas so you always know where to look:<\/p>\n\n<ul>\n<li><strong>Queue<\/strong> \u2014 things that need your attention, ranked by priority. Not everything at once \u2014 just what matters right now<\/li>\n<li><strong>Investigate<\/strong> \u2014 dig into blocked IPs, security events, and the specific signals that triggered each one<\/li>\n<li><strong>Configure<\/strong> \u2014 guided setup for each protection area, with clear recommendations matched to your site<\/li>\n<li><strong>Reports<\/strong> \u2014 a clear view of what Shield has blocked, detected, and repaired over time<\/li>\n<\/ul>\n\n<p>The goal: guide you quickly towards action, not bury you in data.<\/p>\n\n<h4>\ud83d\udee1\ufe0f Free Protection<\/h4>\n\n<p><strong>Bot Blocking &amp; Firewall<\/strong><\/p>\n\n<ul>\n<li><strong><code>silentCAPTCHA<\/code><\/strong> \u2014 blocks bad bots on login, registration, lost password, and comment forms using passive signals invisible to real visitors. No CAPTCHA keys. No external requests. No JavaScript that breaks your forms. Everything runs on your server (GDPR friendly).<\/li>\n<li>Firewall rules blocking common WordPress attack patterns \u2014 SQL injection probes, known exploit signatures, suspicious request parameters<\/li>\n<li>XML-RPC protection \u2014 disable or restrict entirely, including pingbacks and trackbacks<\/li>\n<li>REST API firewall \u2014 block unauthenticated requests<\/li>\n<li>Fake crawler detection \u2014 identifies bots spoofing legitimate search engines<\/li>\n<\/ul>\n\n<p><strong>Login &amp; Account Security<\/strong><\/p>\n\n<ul>\n<li><strong>Two-factor authentication (2FA)<\/strong> \u2014 email codes, Google Authenticator, or YubiKey OTP for all users<\/li>\n<li>Brute force protection with configurable login attempt limits and cooldown<\/li>\n<li>Session locking \u2014 tie sessions to a browser or IP to stop account theft after a successful login<\/li>\n<li>User enumeration blocking \u2014 closes off <code>?author=<\/code> probes used to harvest usernames before an attack<\/li>\n<\/ul>\n\n<p><strong>Scanning &amp; Integrity<\/strong><\/p>\n\n<ul>\n<li><strong>Core file scanning<\/strong> \u2014 compares WordPress core against official checksums and repairs changed files automatically<\/li>\n<li>Suspicious PHP detection \u2014 flags PHP files in locations where they have no business being<\/li>\n<li>Abandoned plugin detection \u2014 identifies unmaintained plugins most likely to carry unpatched vulnerabilities<\/li>\n<\/ul>\n\n<p><strong>Visibility &amp; Control<\/strong><\/p>\n\n<ul>\n<li><strong>Security Admin PIN<\/strong> \u2014 lock Shield's own settings so other administrators cannot quietly weaken your configuration<\/li>\n<li>Security activity log \u2014 logins, user changes, plugin and theme events, post edits, and suspicious requests: Everything in one clear view<\/li>\n<li>IP Rules \u2014 automatic &amp; manual block and bypass rules, CIDR range support, full per-IP request history<\/li>\n<\/ul>\n\n<h4>\ud83e\udd1d CrowdSec Integration<\/h4>\n\n<p>Shield is the only WordPress security plugin with a native CrowdSec integration. CrowdSec aggregates threat signals from millions of sites into a shared IP reputation network \u2014 your site blocks known attackers before they ever probe you, using intelligence far beyond your own traffic history.<\/p>\n\n<h4>\u2728 ShieldPRO<\/h4>\n\n<ul>\n<li><strong>Passkeys<\/strong> \u2014 phishing-resistant, passwordless login for users<\/li>\n<li><strong>Backup login codes<\/strong> \u2014 emergency 2FA access when a device is lost<\/li>\n<li><strong>AI-based malware scanner<\/strong> \u2014 detects known and unknown PHP malware<\/li>\n<li><strong>Plugin &amp; theme file scanning<\/strong> \u2014 compares installed files against WordPress.org originals, flagging unauthorised changes<\/li>\n<li><strong>Vulnerability scanning<\/strong> \u2014 active checks across all installed plugins and themes<\/li>\n<li><strong>Broader spam protection<\/strong> \u2014 WooCommerce, EDD, Contact Form 7, Ninja Forms, Elementor, and more<\/li>\n<li><strong>Traffic rate limiting<\/strong> \u2014 cap request rates per IP to absorb high-volume bot floods<\/li>\n<li><strong>User suspension<\/strong> \u2014 manual or automatic suspension of idle accounts<\/li>\n<li><strong>MainWP integration<\/strong><\/li>\n<li><strong>White Label<\/strong> \u2014 rename and rebrand Shield for client sites<\/li>\n<\/ul>\n\n<h4>Who It's For<\/h4>\n\n<p>Shield suits site owners, agencies, and MSPs who want protection that runs itself \u2014 not a plugin that demands constant attention to be useful.<\/p>\n\n<p>If you have been burned by security plugins that generate more noise than protection, or dashboards that tell you everything is wrong without telling you what to fix, Shield was built to be the alternative.<\/p>\n\n<!--section=installation-->\n<ol>\n<li>Browse to Plugins -&gt; Add New in your WordPress admin area.<\/li>\n<li>Search for <code>Shield Security<\/code>.<\/li>\n<li>Click Install Now, then Activate.<\/li>\n<li>Open <code>Shield<\/code> from the admin menu and follow the guided setup.<\/li>\n<\/ol>\n\n<!--section=faq-->\n<p>Please see the dedicated security <a href=\"https:\/\/clk.shldscrty.com\/firewallhelp\">help centre<\/a> for details on features and some FAQs.<\/p>\n<dl>\n<dt id=\"how%20does%20automatic%20ip%20blocking%20work%3F\"><h3>How does automatic IP blocking work?<\/h3><\/dt>\n<dd><p>Shield assigns offense points to visitors who trigger security rules \u2014 failed logins, firewall blocks, silentCAPTCHA failures, and other signals. When a visitor's points reach the configured threshold, they are blocked automatically. You can review blocked IPs, adjust thresholds, or add manual rules from the IP Rules section.<\/p><\/dd>\n<dt id=\"how%20does%20silentcaptcha%20detect%20bots%20without%20interrupting%20real%20visitors%3F\"><h3>How does silentCAPTCHA detect bots without interrupting real visitors?<\/h3><\/dt>\n<dd><p>It analyses passive signals \u2014 timing, form interaction behaviour, and request characteristics \u2014 to distinguish automated requests from genuine visitors. There is no challenge to complete, no external site keys to set up, and no JavaScript that can break your forms. Everything stays on your server.<\/p><\/dd>\n<dt id=\"my%20server%20already%20has%20a%20firewall.%20why%20do%20i%20need%20shield%20too%3F\"><h3>My server already has a firewall. Why do I need Shield too?<\/h3><\/dt>\n<dd><p>Your host or network firewall protects the server perimeter. Shield works inside WordPress, where it understands login attempts, user changes, plugin activity, file integrity, and attack patterns specific to WordPress. The two layers solve different problems and complement each other.<\/p><\/dd>\n<dt id=\"can%20shield%20block%20comment%20spam%3F\"><h3>Can Shield block comment SPAM?<\/h3><\/dt>\n<dd><p>Yes. <code>silentCAPTCHA<\/code> protects the WordPress comment form in the free plugin. ShieldPRO extends coverage to Contact Form 7, Ninja Forms, WooCommerce, and a range of other integrations.<\/p><\/dd>\n<dt id=\"can%20i%20use%20shield%20alongside%20another%20security%20plugin%3F\"><h3>Can I use Shield alongside another security plugin?<\/h3><\/dt>\n<dd><p>Generally, no. Running two plugins that control the same login or request flows leads to duplicate blocking, noisier logs, and harder troubleshooting. If you keep another plugin active, disable the areas where they overlap.<\/p><\/dd>\n<dt id=\"i%27ve%20locked%20myself%20out%20of%20my%20site.%20what%20do%20i%20do%3F\"><h3>I've locked myself out of my site. What do I do?<\/h3><\/dt>\n<dd><p>This usually happens after adding your own IP to the block list, or enabling 2FA when your site cannot deliver email codes.<\/p>\n\n<ol>\n<li>Open an FTP or file manager connection to <code>&lt;your WordPress root&gt;\/wp-content\/plugins\/wp-simple-firewall\/<\/code>.<\/li>\n<li>Create a file in that folder called <code>forceoff<\/code>.<\/li>\n<li>Load any page on your site \u2014 Shield will switch off.<\/li>\n<\/ol>\n\n<p>Delete <code>forceoff<\/code> from the server once you are back in.<\/p><\/dd>\n<dt id=\"i%27m%20not%20receiving%20my%202fa%20email%20code.\"><h3>I'm not receiving my 2FA email code.<\/h3><\/dt>\n<dd><p>Email delivery depends on your site's mail configuration, not Shield. If it is unreliable, set up a dedicated transactional email service or switch users to an authenticator app instead.<\/p><\/dd>\n<dt id=\"does%20the%20ip%20bypass%20list%20support%20ranges%2C%20and%20does%20it%20take%20precedence%20over%20block%20rules%3F\"><h3>Does the IP bypass list support ranges, and does it take precedence over block rules?<\/h3><\/dt>\n<dd><p>Yes to both. Shield supports CIDR notation for IP ranges, and bypass entries always take precedence over block rules.<\/p><\/dd>\n<dt id=\"is%20white%20label%20available%3F\"><h3>Is White Label available?<\/h3><\/dt>\n<dd><p>Yes. ShieldPRO includes White Label controls to rename and rebrand Shield for client sites.<\/p><\/dd>\n\n<\/dl>\n\n<!--section=changelog-->\n<h4><a href=\"https:\/\/clk.shldscrty.com\/shieldwporgfullchangelog\">View Shield Security Changelog<\/a><\/h4>","raw_excerpt":"Smart WordPress security that blocks bots automatically, guides you to what matters, and repairs problems \u2014 without drowning you in noise.","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/azb.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin\/754","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/azb.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin"}],"about":[{"href":"https:\/\/azb.wordpress.org\/plugins\/wp-json\/wp\/v2\/types\/plugin"}],"replies":[{"embeddable":true,"href":"https:\/\/azb.wordpress.org\/plugins\/wp-json\/wp\/v2\/comments?post=754"}],"author":[{"embeddable":true,"href":"https:\/\/azb.wordpress.org\/plugins\/wp-json\/wporg\/v1\/users\/paultgoodchild"}],"wp:attachment":[{"href":"https:\/\/azb.wordpress.org\/plugins\/wp-json\/wp\/v2\/media?parent=754"}],"wp:term":[{"taxonomy":"plugin_section","embeddable":true,"href":"https:\/\/azb.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_section?post=754"},{"taxonomy":"plugin_tags","embeddable":true,"href":"https:\/\/azb.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_tags?post=754"},{"taxonomy":"plugin_category","embeddable":true,"href":"https:\/\/azb.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_category?post=754"},{"taxonomy":"plugin_contributors","embeddable":true,"href":"https:\/\/azb.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_contributors?post=754"},{"taxonomy":"plugin_business_model","embeddable":true,"href":"https:\/\/azb.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_business_model?post=754"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}