Protect your WordPress site against all malware and hackers attacks.
Experience comprehensive website security with WP Hide Security Enhancer. Our Pro Version empowers you to protect your WordPress site against a range of threats, all while ensuring optimal performance. This powerful plugin offers a suite of features, including version hiding, theme and plugin masking, custom URL structures, database security, server information masking, and more.
Hide your website identity, to avoid any attack such as XSS, XSRF, SQL Injection, brute-force, etc. Hackers can’t take advantage of security breaches on the site, since they can’t find the vulnerable code.
No files and directories changes!
No files and directories are being changed on your server, everything is processed virtually! The plugin algorithm use URL rewrite techniques and WordPress filters to apply all functionality and features.
100% compatible with other Plugins & Themes
Well designed code to ensure full compatibility with all themes and plugins. Once the plugin is activated, the site will continue to work the same as before.
WordPress MultiSite Compatible
PRO FEATURE: Support MultiSite environment. Can be set to work per site set-up ( individual settings to each site in the network ) or globally ( superadmin settings )
Custom login URL
All sites receive hits on the login page, by boots trying to brute force. This requires a high processing CPU power due to the number of attempts, which conclude in a dramatic site speed decrease and response time. Blocking default login URL, boots will hit just a cached 404 error page, so no resource is being used at all.
Compatible with any host / server
Tested and 100% compatible with different hosting server configurations based on Linux and Windows operating systems.
PRO FEATURE: Full Nginx support, LEMP stack. Advanced rewrite queries engine included, which provide the most efficient and light rewrite data.
Automatic / Manual Rewrite deploy
PRO FEATURE: The rewrite data are automatically deployed on server using Apache and IIS. If this is not possible, a graphic user interface guide through the process. If needed, automatic rewrite updates can be turned off for manual updates.
Block and rewrite (default) paths
The plugin help to change default URLs of you WordPress, but also hide/block defaults!
All other similar plugins, just change the slugs, but the default remain accessible.
Plugin URL customization
Change the folder path and any specific URL for an individual plugin with the option to block all the defaults.
PRO FEATURE: HTML Meta clean-up for Meta Generator, wlwmanifest, feed_links, rsd_link, adjacent_posts_rel, profile link, canonical link and more.
Change WP Ajax calls
PRO FEATURE: Change the default use of wp-admin/run-ajax.php and block the default.
Settings Import / Export
PRO FEATURE: Easy settings migration and plugin set-up through an import / export functionality
PHP mod_rewrite and web.config compatible
Seamless integration with existing Apache mod_rewrite or IIS web.config PHP extensions to provide fast and efficient URL’s changes.
Change default WordPress directories
Create customized WordPress directories which replace wp-content, wp-includes, wp-admin. Everything is achieved virtually, no actual folders are being changed on the server.
Hide all references to the theme or child theme to prevent display of theme name, version, author etc. No one will know it’s a WordPress theme.
Clean up HTML comments produced by plugins and theme, WordPress core auto-generated classes as page-template-x, format-x, wp-image-x, etc for body, post, images etc
Postprocessing with Replacements
PRO FEATURE: Remove Headers from server responses which include X-Powered-By, X-Pingback etc
XML-RPC API control
Full control over XML-RPC API by changing the path and blocking the default path (xml-rpc.php path, disable XML-RPC authentication, remove pingback).
JSON REST API control
Full control over JSON REST V1 and V2 API control by disabling and blocking the default URL. Disable output the REST API link tag into page header, Disable JSON REST WP RSD endpoint,
Advanced CSS Options
PRO FEATURE: Provide full control over CSS data and related (Html classes and IDs). Combine all assets and inline CSS into a single file, post-processing for comments remove, minify, Classes and IDs replacements within CSS assets and HTML.
Block access to default core files.
Block direct access to any of WordPress root files as license.txt, wp-load.php, wp-settings.php. Individual file access/restriction is available.
HTML output control
Emoji disable, styles and scripts resources clean-up, remove version from the URL’s, remove ID attribute
PRO FEATURE: Ultimate protection of a website using a Proactive security solution. Adds a layer of protection, to prevent the malicious and malware to reach the server-side.
Provides support and dedicated interface for integration with a Content Distribution Network (CDN)
Custom Map URLs
PRO FEATURE: Custom Map URLs that can replace any existing link on HTML. This functionality can also re-map entire paths/subdirectories.
White label themes/plugins
PRO FEATURE: Replace text on outputted code and assets to white label plugins/themes/code, including complex applications like page builders ( Elementor, WPBakery Page Builder ).
.. and many more
Install the plugin now and take advantage of the latest security techniques.
- Conceal your WordPress version to deter attackers from targeting known vulnerabilities.
- Hide active themes and plugins to add an extra layer of security.
- Create custom URLs for essential WordPress elements to reduce predictability.
- Change your login URL to a unique address, preventing unauthorized login attempts.
- Advanced database security options protect against SQL injection and unauthorized access.
- Conceal server information to thwart attackers attempting to exploit server vulnerabilities.
- Customize your 404 error page for improved user experience and enhanced security.
- Automatically redirect users from the default login page to the custom login URL.
- Robust firewall to block malicious traffic and protect against various attacks.
- Import and export settings for easy transfer between different WordPress installations.
- Gain control over HTTP headers to strengthen your site’s security.
- Disable XML-RPC functionality to prevent attacks that might exploit this feature.
- Create a whitelist of trusted IP addresses for secure access to your site.
- Compatible with WordPress Multisite for securing multiple sites under one roof.