Features

Everything you need for
professional-grade WordPress® API security

Just a few clicks away to put your mind at ease.

Before (Screenshot could not fit everything)

Top Feature

Removed Directory

Hiding sensitive details from the API index of your WordPress® site should be a high priority.

Don’t give hackers a direct roadmap on what can be used.

See for yourself: Access your API index now and see everything that your WordPress® site is currently exposing. It’s a lot.

Get It Now!

Learn More

I don’t need to worry about my WordPress REST API directory exposing everything anymore. 😍

— Mandi Alpine, Brandwich

Firewall

Block Unknown Agents

Deny access to any route used from unknown agents including bots at the door. Pre-vetted agents are only allowed in. No kung fu needed.

FYI: Most all API requests don’t specify a User Agent. This is because the device / browser passes this info automatically. However, this is not validated – allowing bots to also make requests.

Get It Now!

Learn More

This security plugin has been a pain. 💢

— Agent Smith, Bot

What’s your name?

Protect User Data

Anonymous user data. Prevent hackers getting a head start with listed usernames, ID’s exposed and more.

FYI: The users endpoint in WordPress® is an open book to the public for no specific reason. Just be glad emails are not shared there too.

Get It Now!

Learn More

Traffic

Rate Limiting

We automatically prevent abuse from excessive calls and performance degradation on the host running your site.

We allow you to take control to configure the time and limits per seconds to your requirements.

Get It Now!

Documentation

No access

Firewall

Getting attacked is not fun. We automatically lockdown access to the API with our comprehensive IP blacklisting system if we detect it’s being violated before it gets too bad.

Feel free to blacklist IP addresses manually if needed.

Get It Now!

Documentation