內容簡介
現在就測試!
您可以立即測試SecuPress免費版。
守護您的網站!
使用SecuPress來保護您的WordPress,掃描惡意軟體,封鎖機器人及可疑IP,全方位的WordPress安全工具包提供免費或成為專業版的外掛,並符合GDPR規範。
免費版和專業版有何不同?
如果您有時間經常啟用掃描,那麼選擇免費版WordPress安全外掛是一個很好的選擇!但如果沒有辦法每週啟用掃描,那麼SecuPress專業版就是務必的選擇。我們的外掛具有自動化功能,可以幫您處理完全的防護工作。
以下是最熱門的功能之一:
反暴力破解登錄
封鎖IP
防火牆
安全警報(1)
惡意軟體掃描(1)
根據地理位置封鎖國家(1)
我們還添加了其他大多數WordPress安全外掛所沒有的功能:
保護安全金鑰
封鎖惡意機器人
檢測有漏洞的外掛和主題(1)
以PDF格式生成安全報告(1)
您可以查看常見問題或與我們的支援團隊聯繫。想了解SecuPress的所有信息?您可以在這裡閱讀我們的文檔:docs.secupress.me。
如何確定它是否正常運作?
我們有專門的安全掃描器,可以為您的網站提供明確的安全等級和報告,這樣您就可以知道需要修復哪些問題。
WordPress功能
安全稽核
SecuPress是唯一一個具有全面掃描器的外掛,能夠為您修復問題。在需要您做出決定之前,它會向您請示。通過這個功能,您可以在5分鐘內檢查35個安全點,讓我們來為其它部分提供保護。
做完之後,您可以得到一個安全等級,這可以給您一個清晰的安全水平概念,也可以將此分析以PDF格式匯出,與其他人(客戶或同事)分享(1)。
使用者 & 登入
這個功能是確保您的使用者數據受到保護並避免被盜用的最簡單方法。使用此功能,您可以限制錯誤的登入嘗試次數,禁止不存在的使用者名稱進行登入嘗試,並設置一個非登入時間時隙。SecuPress也確保您可以避免雙重登入和控制您的會話。
SecuPress還添加了2FA(兩步驗證),因為當涉及WordPress安全時,它是必不可少的功能!
這個外掛還為您提供更好的使用者和密碼控制,您可以設置:
使用者的密碼生命週期。
強制使用強密碼。
禁止使用模糊的使用者名稱,例如www或admin。
厭倦了惡意機器人找到您的WordPress登錄頁面?不要擔心,現在只需將其搬移到SecuPress中包括的著名Move Login外掛即可。
外掛和主題
SecuPress可以幫助您檢測具有漏洞或已被篡改以包含惡意代碼的主題和外掛。如果您安裝了這些外掛和主題,您的安全模塊將發出電子郵件警報並在WordPress中警告您。
SecuPress帶來更進一步的安全限制,可以限制外掛連接、停用、安裝和移除在您的生產(實時)網站中。
外掛標籤
開發者團隊
② 後台搜尋「SecuPress with Simple SSL – Simple and Performant Security」→ 直接安裝(推薦)
原文外掛簡介
Test it now!
You can test SecuPress Free now.
YOU MADE IT, WE KEEP IT SAFE!
The most advanced WordPress Protection on the market. SecuPress is focused on WordPress attacks and Malwares, not just “usual web protections” like many.
Protect your WordPress with malware scans ; block bots & suspicious IPs. Get a complete WordPress security toolkit for free or as a pro plugin. SecuPress is GDPR compliant.
What’s the difference between free and pro version?
If you are proactive, our free WordPress security plugin is a great choice! No time to activate weekly scans? Then SecuPress pro is the way to go. Our plugin takes care of everything with automated tasks.
Here are some of our most popular features:
Brute Force Login Protection
Password Spraying Protection
Firewall features
Security alerts (1)
Malware Scanner (1)
Block country by geolocation (1)
We have included some features you won’t find in most WordPress security plugins:
Protection of Security Keys
Block visits from Bad Bots
Vulnerable Plugins & Themes detection (1)
Security Reports in PDF format (1)
You can check out Frequently Asked Questions or get in touch with our support. Want to know all about SecuPress? You can read our documentation here: docs.secupress.me.
How will you know it works?
Well, we have a dedicated security scanner that will give you a clear security grade and report for your website. This way, you’ll know exactly what to fix.
WordPress Features
Security Audit
SecuPress is the only plugin with a full scanner able to fix the issues for you. And when it requires a decision from you, it will ask you before proceeding. With this feature, you can check 35 security points in 5 minutes and let us take care of the rest.
Once done, you get a security grade that gives you a clear idea of what your security level is. You can export this analysis in PDF format to share with others (clients or colleagues) (1).
Users & Login
This feature is the easiest way to make sure your users’ data is protected and to keep their accounts from being compromised. With this feature you can limit the number of bad login attempts, ban non-existing usernames login attempts and set a non-login time slot. SecuPress also makes sure you control the sessions of your users.
SecuPress also adds a 2FA (Two Factor Authentication) because it’s almost a mandatory feature when it comes to WordPress security!
The plugin also gives you greater user and password control as you can set:
Password lifetimes for your users.
Enforce strong password use.
Forbid the use of vague usernames like www or admin.
Tired of bots finding your WordPress login page? Finally, don’t let bots find your login page, just move it with the famous Move Login plugin, now included in SecuPress.
Plugins and Themes
SecuPress helps you detect themes and plugins that are vulnerable or that have been tampered with to include malicious code. If you install one of these, your security module will send out an email alert and give you a warning in WordPress.
SecuPress takes security further by limiting plugin activation, deactivation, installation and removal in your production (live) website. Plugin and theme uploads via .zip files will be on lockdown as well to block off this easy hacking route.
WordPress Core
SecuPress reinforces the WordPress Core to keep it safe. The security plugin optimizes what’s under the hood to secure the config file by setting the proper parameters.
Sensitive Data
SecuPress secures content in many ways:
The plugin secures WordPress Endpoints and APIs by blocking bad requests for XML-RPC or REST API.
It blocks bad bots with its Robots Blackhole feature.
It provides an anti-hotlink feature to preserve your bandwidth.
The plugin packs 7 anti-disclose security modules to make sure no precious information is available to hackers in your PHP or WordPress itself.
Profile and SecuPress settings pages are password protected to keep sensitive information away from prying eyes.
Firewall
SecuPress is one of the most efficient WordPress bouncer you’ll ever see!
The plugin blocks malicious incoming requests.
It blocks bad User Agents (no bad crawlers allowed).
Bad requests methods also get the boot in a single click.
URLs are kept in check: no bad URL contents.
SQL injection scanners are kept out as well.
Brute force attempts are stopped in their tracks.
GeoIP Blocking by country gives you more control over your traffic.
Malware Scan
SecuPress has a unique malware scan developed by our security experts. It hunts down bad files and provides you with an easy step-by-step report that lets you take action. It looks into:
Bad files in your FTP.
Your uploads folder for dangerous files.
Potential phishing attempts via index.php loads.
Backups
We know firsthand how painful it is to pick up the pieces after an attack damages your WordPress. SecuPress preserves your data to help you avoid lost content or settings if your website comes under attack. The plugin backs up your database and files and lets you download them to guarantee you peace of mind.
Anti Spam
Did you know that 60% of the traffic on the Internet is generated by bots? Most of them happen to be spam bots. We developed our own anti-spam system that works quietly in the background. Just activate it and enjoy a spam free experience.
Alerts
Alerts are an essential tool when your website is under attack. When something important happens on your website, SecuPress will send you an alert via email. We’re working on alerts via SMS, Slack & Twitter as well.
You also receive a daily report that provides a debrief of the attempted attack and all the activities blocked by SecuPress.
Scheduled Security Tasks
SecuPress can run 3 separate scheduled tasks for you. It’s like having a security patrol on your WordPress.
Scheduled Scanner: SecuPress scans your website to detect any issues. After the scan is complete, you get a report in your inbox outlining any actions you have to take to protect your website.
Scheduled Backup: our team knows that everyone at one time or another forgets to back things up. We made it an automatic task to help ensure you always can recover from an attack with your content safe.
Scheduled Malware Scan: this security feature scans your website at regular intervals to hunt down any malware that may have gotten into your WordPress.
Logs
SecuPress will keep a log of important security activities and 404 pages triggered by users, bots or even Chuck Norris. This lets you keep an eye on what’s going on in your WordPress at any time. You can also control banned IPs from this option.
(1) Available in the Pro Version.
(SecuPress est une extension de sécurité WordPress française)
TODO
Create a trust score for each non WP file and displays it
Create a “suspicious” status for alerts
Revamp alerts
Revamp logs
Add http logs
PHP 8.O min
replace %s by ###USERNAME### in emails
.htaccess scanner
login rest disclose scanner
move EDD updater+white label into a mu to allow upgrade+rollback even with plugin deactivated
give possibility to rename logins
target=”_blank” on doc links
AI Scanner
Improve malware scanner, again
