前言介紹
- 這款 WordPress 外掛「Wordfence Security – Firewall, Malware Scan, and Login Security」是 2012-04-20 上架。
- 目前有 5000000 個安裝啟用數。
- 上一次更新是 2025-04-08,距離現在已有 27 天。
- 外掛最低要求 WordPress 4.7 以上版本才可以安裝。
- 外掛要求網站主機運作至少需要 PHP 版本 7.0 以上。
- 有 4547 人給過評分。
- 論壇上目前有 195 個提問,問題解答率 78% ,不低,算是個很有心解決問題的開發者團隊了!
外掛協作開發者
wfmatt | wfryan | wfmattr | mmaunder |
外掛標籤
2FA | malware | scanner | firewall | security |
內容簡介
fective way to manage multiple WordPress sites with Wordfence installed from a single location.
Monitor security status across all your sites from a single dashboard.
Update plugins and themes for all your sites with a single click, including automatic backups before upgrades.
Track all security related events and get email alerts for critical events such as malicious activity, failed login attempts and more.
Central Quarantine endpoint lockdown and cleaning.
LIVE TRAFFIC VIEW
Real-time traffic updates, including crawlers, humans, login attempts and more in a beautiful dashboard.
Live views of traffic and hack attempts including origin, their IP address, the location, and time of day.
Real-time insights to improve your site performance and reduce the impact of attacks.
Wordfence Security is free to use on as many websites as you want. Get started today and keep your site protected 24/7.
原文外掛簡介
THE MOST POPULAR WORDPRESS FIREWALL & SECURITY SCANNER
WordPress security requires a team of dedicated analysts researching the latest malware variants and WordPress exploits, turning them into firewall rules and malware signatures, and releasing those to customers in real-time.
Choose the right protection for you: Wordfence Free, Premium, Care or Response
Wordfence is widely acknowledged as the number one WordPress security research team in the World. Our plugin provides a comprehensive suite of security features, and our team’s research is what powers our plugin and provides the level of security that we are known for.
At Wordfence, WordPress security isn’t a division of our business – WordPress security is all we do. We employ a global 24-hour dedicated incident response team that provides our priority customers with a 1 hour response time for any security incident.
The sun never sets on our global security team and we run a sophisticated threat intelligence platform to aggregate, analyze and produce ground breaking security research on the newest security threats.
Wordfence Security includes an endpoint firewall, malware scanner, robust login security features, live traffic views, and more. Our Threat Defense Feed arms Wordfence with the newest firewall rules, malware signatures, and malicious IP addresses it needs to keep your website safe.
Rounded out by 2FA and a suite of additional features, Wordfence is the most comprehensive WordPress security solution available.
🔥 WORDPRESS FIREWALL
Web Application Firewall identifies and blocks malicious traffic. Built and maintained by a large team focused 100% on WordPress security.
Real-time firewall rule and malware signature [Premium] updates via the Threat Defense Feed (free version is delayed by 30 days).
Real-time IP Blocklist [Premium] blocks all requests from the most malicious IPs, protecting your site while reducing load.
Protects your site at the endpoint, enabling deep integration with WordPress. Unlike cloud alternatives, it does not break encryption, cannot be bypassed and cannot leak data.
Integrated malware scanner blocks requests that include malicious code or content.
Protection from brute force attacks by limiting login attempts.
📡 WORDPRESS SECURITY SCANNER
Malware scanner checks core files, themes and plugins for malware, bad URLs, backdoors, SEO spam, malicious redirects and code injections.
Real-time malware signature updates [Premium] via the Threat Defense Feed (free version is delayed by 30 days).
Compares with WordPress.org repository your core files, themes and plugins, checking their integrity and reporting any changes to you.
Repair WordPress core, theme, and plugin files that have changed by overwriting them with a pristine, original version. Delete any files that don’t belong easily within the Wordfence interface.
Checks your site for known security vulnerabilities and alerts you to any issues. Also alerts you to potential security issues when a plugin has been closed or abandoned.
Checks your content safety by scanning file contents, posts and comments for dangerous URLs and suspicious content.
Checks to see if your site or IP have been blocklisted [Premium] for malicious activity, generating spam or other security issues.
🔒 LOGIN SECURITY
Two-factor authentication (2FA), one of the most secure forms of remote system authentication available via any TOTP-based authenticator app or service.
Login Page CAPTCHA stops bots from logging in.
2FA for WooCommerce and custom integrations allow for 2FA to be setup on custom account pages
XML-RPC options including disabling or adding 2FA.
Password Security: Block logins for administrators using known compromised passwords.
📋 SECURITY AUDIT LOG [Premium]
The Audit Log monitors all changes and actions in security-sensitive areas of the site.
Remote tamper-proof data storage via Wordfence Central.
Monitor events and actions ranging from user creation and editing to plugin/theme installation and updates to post and page changes.
Configurable to log all events or significant events only, which includes all authentication, site configuration, and site functionality events.
🌐 WORDFENCE CENTRAL
Wordfence Central is a powerful and efficient way to manage the security for multiple sites in one place.
Centralized management: Efficiently assess the security status of all your websites in one view. View detailed security findings without leaving Wordfence Central.
Powerful templates make configuring Wordfence a breeze.
Highly configurable alerts can be delivered via email, SMS or Slack. Improve the signal to noise ratio by leveraging severity level options and a daily digest option.
Track and alert on important security events including administrator logins, breached password usage and surges in attack activity.
Free to use for unlimited sites.
🛠️ SECURITY TOOLS
Live Traffic monitors visits and hack attempts not shown in other analytics packages in real time; including origin, their IP address, the time of day and time spent on your site.
Block attackers by IP or build advanced rules based on IP Range, Hostname, User Agent and Referrer.
Country blocking available with Wordfence Premium.
各版本下載點
- 方法一:點下方版本號的連結下載 ZIP 檔案後,登入網站後台左側選單「外掛」的「安裝外掛」,然後選擇上方的「上傳外掛」,把下載回去的 ZIP 外掛打包檔案上傳上去安裝與啟用。
- 方法二:透過「安裝外掛」的畫面右方搜尋功能,搜尋外掛名稱「Wordfence Security – Firewall, Malware Scan, and Login Security」來進行安裝。
(建議使用方法二,確保安裝的版本符合當前運作的 WordPress 環境。
1.1 | 1.2 | 1.3 | 1.3.1 | 1.3.2 | 1.3.3 | 1.4.2 | 1.4.3 | 1.4.4 | 1.4.5 | 1.4.6 | 1.4.7 | 1.4.8 | 1.5.1 | 1.5.2 | 1.5.3 | 1.5.4 | 1.5.5 | 1.5.6 | 2.0.1 | 2.0.2 | 2.0.3 | 2.0.5 | 2.0.6 | 2.0.7 | 2.1.0 | 2.1.1 | 2.1.2 | 2.1.3 | 2.1.4 | 2.1.5 | 3.0.2 | 3.0.3 | 3.0.4 | 3.0.5 | 3.0.6 | 3.0.7 | 3.0.8 | 3.0.9 | 3.1.0 | 3.1.1 | 3.1.2 | 3.1.4 | 3.1.6 | 3.2.1 | 3.2.3 | 3.2.4 | 3.2.5 | 3.2.6 | 3.2.7 | 3.3.2 | 3.3.3 | 3.3.4 | 3.3.5 | 3.3.6 | 3.3.7 | 3.4.1 | 3.4.4 | 3.4.5 | 3.5.1 | 3.5.2 | 3.6.1 | 3.6.3 | 3.6.4 | 3.6.5 | 3.6.6 | 3.6.7 | 3.6.8 | 3.6.9 | 3.7.1 | 3.7.2 | 3.8.1 | 3.8.2 | 3.8.3 | 3.8.4 | 3.8.5 | 3.8.6 | 3.8.7 | 3.8.8 | 3.8.9 | 3.9.1 | 4.0.1 | 4.0.2 | 4.0.3 | 5.0.1 | 5.0.2 | 5.0.3 | 5.0.4 | 5.0.5 | 5.0.6 | 5.0.7 | 5.0.8 | 5.0.9 | 5.1.1 | 5.1.2 | 5.1.4 | 5.1.5 | 5.1.6 | 5.1.7 | 5.1.8 | 5.1.9 | 5.2.1 | 5.2.2 | 5.2.3 | 5.2.4 | 5.2.5 | 5.2.6 | 5.2.7 | 5.2.8 | 5.2.9 | 5.3.1 | 5.3.2 | 5.3.3 | 5.3.4 | 5.3.5 | 5.3.6 | 5.3.7 | 5.3.8 | 5.3.9 | 6.0.1 | 6.0.2 | 6.0.3 | 6.0.4 | 6.0.5 | 6.0.6 | 6.0.7 | 6.0.8 | 6.0.9 | 6.1.1 | 6.1.2 | 6.1.3 | 6.1.4 | 6.1.5 | 6.1.6 | 6.1.7 | 6.1.8 | 6.1.9 | 6.2.0 | 6.2.1 | 6.2.2 | 6.2.3 | 6.2.4 | 6.2.5 | 6.2.6 | 6.2.7 | 6.2.8 | 6.2.9 | 6.3.0 | 6.3.1 | 6.3.2 | 6.3.3 | 6.3.4 | 6.3.5 | 6.3.6 | 6.3.7 | 6.3.8 | 6.3.9 | 7.0.1 | 7.0.2 | 7.0.3 | 7.0.4 | 7.0.5 | 7.1.0 | 7.1.1 | 7.1.2 | 7.1.3 | 7.1.4 | 7.1.5 | 7.1.6 | 7.1.7 | 7.1.8 | 7.1.9 | 7.2.1 | 7.2.2 | 7.2.3 | 7.2.4 | 7.2.5 | 7.3.1 | 7.3.2 | 7.3.3 | 7.3.4 | 7.3.5 | 7.3.6 | 7.4.0 | 7.4.1 | 7.4.2 | 7.4.3 | 7.4.4 | 7.4.5 | 7.4.6 | 7.4.7 | 7.4.8 | 7.4.9 | 7.5.0 | 7.5.1 | 7.5.2 | 7.5.3 | 7.5.4 | 7.5.5 | 7.5.6 | 7.5.7 | 7.5.8 | 7.5.9 | 7.6.0 | 7.6.1 | 7.6.2 | 7.7.0 | 7.7.1 | 7.8.0 | 7.8.1 | 7.8.2 | 7.9.0 | 7.9.1 | 7.9.2 | 7.9.3 | 8.0.0 | 8.0.1 | 8.0.2 | 8.0.3 | 8.0.4 | 8.0.5 | trunk | 5.3.10 | 5.3.11 | 5.3.12 | 6.0.10 | 6.0.11 | 6.0.12 | 6.0.14 | 6.0.15 | 6.0.16 | 6.0.17 | 6.0.18 | 6.0.19 | 6.0.20 | 6.0.21 | 6.0.22 | 6.0.23 | 6.0.24 | 6.0.25 | 6.1.10 | 6.1.11 | 6.1.12 | 6.1.14 | 6.1.15 | 6.1.16 | 6.1.17 | 6.2.10 | 6.3.10 | 6.3.11 | 6.3.12 | 6.3.14 | 6.3.15 | 6.3.16 | 6.3.17 | 6.3.18 | 6.3.19 | 6.3.20 | 6.3.21 | 6.3.22 | 7.1.10 | 7.1.11 | 7.1.12 | 7.1.14 | 7.1.15 | 7.1.16 | 7.1.17 | 7.1.18 | 7.1.19 | 7.1.20 | 7.10.0 | 7.10.1 | 7.10.2 | 7.10.3 | 7.10.4 | 7.10.5 | 7.10.6 | 7.10.7 | 7.11.0 | 7.11.1 | 7.11.2 | 7.11.3 | 7.11.4 | 7.11.5 | 7.11.6 | 7.11.7 | 7.4.10 | 7.4.11 | 7.4.12 | 7.4.14 | 7.5.10 | 7.5.11 | v1.4.1 |
延伸相關外掛(你可能也想知道)
Really Simple Security – Simple and Performant Security (formerly Really Simple SSL) 》le Plugins include Complianz GDPR, Disable Updates Manager, and Really Simple CAPTCHA., , Really Simple SSL是一個外掛,自動配置你的網站最大程度上使...。
Two-Factor 》在「使用者」→「您的個人檔案」下的「雙因素認證選項」部分,啟用和設定一個或多個雙因素認證提供者:, , 電子郵件代碼, 時間同步一次性密碼(TOTP), FIDO通...。
WP 2FA – Two-factor authentication for WordPress 》這是一款免費且易於使用的 WordPress 二階段驗證外掛。, 在 WordPress 網站登錄頁面和使用者上加入額外的安全層。啟用兩階段驗證(2FA),它是保護使用者免於...。
Wordfence Login Security 》WORDFENCE 登入安全性, Wordfence 登入安全性包含在完整的 Wordfence 插件中發現的功能子集:雙因素驗證、XML-RPC 保護和登入頁 CAPTCHA。, 你正在尋找全面的...。
Shield: Blocks Bots, Protects Users, and Prevents Security Breaches 》你一定會喜歡的功能, , 獨家AntiBot Detection Engine - 強大的替代 Google reCAPTCHA 和 CloudFlare Turnstile。, 自動防止機器人和 IP - 基於評分的安全智...。
Two Factor Authentication 》>WordPress 二次驗證, 此外掛使用雙重認證(TFA / 2FA)來增強 WordPress 的登入安全性。啟用此功能的使用者需輸入一次性密碼才能登入。本掛件由UpdraftPlus ...。
Google Authenticator – 2FA, MFA, OTP SMS and Email 》Google Authenticator – 雙重因素(2FA / OTP) –, 使用 TOTP 登入 2FA 方式,如 Duo/Microsoft/Google Authenticator,來保護您的 WordPress 網站登入頁面。, ...。
Login With Ajax – Fast Logins, 2FA, Redirects 》Login With Ajax 是針對需要用戶登錄或註冊的網站,希望避免使用常規的WordPress登錄頁面或在常規登錄頁面添加 AJAX 特效的外掛。此外掛能夠在側邊欄上添加帶...。
WordPress 2-step verification 》WordPress 2步驟驗證(Wp2sv)為您的 WordPress 帳戶增加了額外的安全層。, 除了您的用戶名和密碼,當您登入時,您還需要輸入由 Android/iPhone/Blackberry ...。
Two Factor (2FA) Authentication via Email 》WordPress是全球最受歡迎的內容管理系統(CMS),超過40%的網站正在運行它。因此,WordPress已成為黑客利用漏洞入侵網站的目標。增強WordPress網站安全性的...。
WebAuthn Provider for Two Factor 》此外掛為 Two Factor 外掛新增 WebAuthn 支援。, 由於 U2F API 已被停用並將在 2022 年 2 月被移除,此外掛可使之前註冊的 U2F 安全金鑰仍能自動支援,使用者...。
Rublon Multi-Factor Authentication (MFA) 》重新掌控您的公司!, , 所有員工的帳戶安全, 無需配置或培訓, , , 安全專家和行業專業人員推薦, “我印象深刻!” — Tony Perez,Sucuri , ...。
Two Factor Authentication (2FA , MFA, OTP SMS and Email) 》多因素驗證-雙重因素(2FA/OTP)-可以為任何基於 TOTP 的驗證方法(例如谷歌驗證器、Microsoft驗證器等)配置多因素驗證來保護您的WordPress網站。它還支持OTP通...。
Value-Auth Two Factor and Access Control 》, 您可以為您的網站啟用雙重驗證。, 您可以設定登入限制。, , 您還可以檢查登入記錄。, , , 關於 Value-Auth, , Value-Auth 是 GMO-DigiRock 的服務。, 要使...。
WP-OTP 》使用 WP-OTP 外掛您可以輕鬆地為 WordPress 登入啟用一次性密碼的雙因素驗證。, 這額外的安全層可提高您的 WordPress 網站安全性。, 新的隱形模式允許您在輸...。