The easy way to completely hide your WordPress core files, login page, theme and plugins paths from being show on front side. This is a huge improvement over Site Security, no one will know you actually run a WordPress. Provide a simple way to clean up html by removing all WordPress fingerprints.
No file and directory change!
No file and directory are being changed anywhere, everything is processed virtually! The plugin code use URL rewrite techniques and WordPress filters to apply all internal functionality and features. Everything is done automatically, there’s no user intervention require at all.
Real hide of WordPress core files and plugins
The plugin not only allow to change default urls of you WordPress, but it hide/block defaults! Other similar plugins, just change the slugs, but the default are still accessible, obviously revealing WordPress as CMS
Change the default WordPress login urls from wp-admin and wp-login.php to something totally arbitrary. No one will ever know where to try to guess a login and hack into your site. Totally invisible !!
Full plugin documentation available at WordPress Hide and Security Enhancer Documentation
When testing with WordPress theme and plugins detector services/sites, any setting change may not reflect right away on their reports, since they use cache. So you may want to check again later, or try a different inner url, homepage url usage is not mandatory.
Being the best content management system, widely used, WordPress is susceptible to a large range of hacking attacks including brute-force, SQL injections, XSS, XSRF etc. Despite the fact the WordPress core is a very secure code maintained by a team of professional enthusiast, the additional plugins and themes makes the vulnerable spot of every website. In many cases, those are created by pseudo-developers who do not follow the best coding practices or simply do not own the experience to create a secure plugin.
Statistics reveal that every day new vulnerabilities are discovered, many affecting hundreds of thousands of WordPress websites.
Over 99,9% of hacked WordPress websites are target of automated malware scripts, who search for certain WordPress fingerprints. This plugin hide or replace those traces, making the hacking boots attacks useless.
Works fine with custom WordPress directory structures e.g. custom plugins, themes, uplaods folder.
Once configured, you need to clear server cache data and/or any cache plugins (e.g. W3 Cache), for a new html data to be created. If use CDN this should be cache clear as well.
Main plugin functionality:
and many more.
No other plugins functionality is being blocked or interfered in any way, everything will function the same
This plugin allow to change default Admin Url’s from wp-login.php and wp-admin to something else. All original links return default theme 404 Not Found page, like nothing exists there. Beside the huge security advantage, this save lots of server processing time by reducing php code and MySQL usage since brute-force attacks trigger wrong urls.
Important: Compared to all other similar plugins which mainly use redirects, this plugin return a default theme 404 error page for all block url functionality, so is not revealing at all the link existence.
Since version 1.2 Change individual plugin urls which make them unrecognizable, for example change default WooCommerce plugin urls and dependencies from domain.com/wp-content/plugins/woocommerce/ to domain.com/ecommerce/cdn/ or anything customized.
Rewrite > Theme
Rewrite > WP includes
Rewrite > WP content
Rewrite > Plugins
Rewrite > Uploads
Rewrite > Comments
Rewrite > Author
Rewrite > Search
Rewrite > XML-RPC
Rewrite > JSON REST
Rewrite > Root Files
Rewrite > URL Slash
General / Html > Meta
General / Html > Admin Bar
General / Feed
General / Robots.txt
General / Html > Emoji
General / Html > Styles
General / Html > Scripts
General / Html > Oembed
General / Html > Headers
General / Html > HTML
Admin > wp-login.php
Admin > Admin URL
This free version works with Apache and IIS server types.
Something is wrong with this plugin on your site? Just use the forum or get in touch with us at Contact and we’ll check it out.
Plugin homepage at WordPress Hide and Security Enhancer
This plugin is developed by Nsp-Code
Please help and translate this plugin to your language at https://translate.wordpress.org/projects/wp-plugins/wp-hide-security-enhancer
Please help by promoting this plugin with an article on your site or any other place. If you liked this code or helped with your project, consider to leave a 5 star review on this board.
Feel free to contact us at email@example.com for fast support.
No files and directories are being changed on your server, everything is processed virtually! The plugin code use URL rewrite techniques and WordPress filters to apply all internal functionality and features.
There’s no requirements on php knowledge. All plugin features and functionality are applied automatically, controlled through a descriptive admin interface.
Everything works as before, no functionality is being broken. You can run updates at any time.
Yes, the plugin works with any cache plugin deployed on your site.
This free code can with Apache, IIS server types and any other set-up which rely on .htaccess usage.
For all other checks the PRO version at WP Hide PRO
There are few things to consider when run on litespeed servers:
Ensure the liteserver actually process the .htaccess file where the rewrite data is being saved. Check with the following topic regarding this issue Post
If you use Litespeed Cache plugin, in the Optimization Settings area, disable the CSS / JS Minify
If your litespeed server requires to place the rewrite lines in a different file e.g. config file or interface, consider upgrading to PRO version which includes a Setup page where you can get the rewrite code WP Hide PRO.
As default, on Bitnami LAMP set-ups, the system will not process the .htaccess file, so none of the rewrites will work. You can change this behavior by updating the main config file located at /opt/bitnami/apps/APPNAME/conf/httpd-app.conf , update the line
Restart the Apache service through ssh
sudo /opt/bitnami/ctlscript.sh restart
More details can be found at Bitnami Default .Htaccess
I’m seeing this error “Unable to write custom rules to your .htaccess. Is this file writable” what does it mean?
The error appear when the plugin is not able to write to .htaccess file located in your WordPress root. You can try the followings to make a fix:
Check if your .htaccess file is writable. This can be different from server to server, but usually require rw-rw-r– / 0664 Also ensure the file owner is the same group as php
Sometimes the other codes wrongly use the flush_rules() which hijack the default filters for rewrite. Try to disable the other plugins and theme to figure out which ones produce the issue.
De-activate and RE-activate the plugin, apparently worked for some users.
Create a backup of .htaccess, then delete it from the server. Go to Settings > Permalinks > update once, this should create the file again on the WordPress root. If so, try to change any WP Hide options which will update the .htaccess content accordingly.
If you can’t find the recovery link or none of the above worked, delete the plugin from your wp-content/plugins directory. Then remove any lines in your .htaccess file between
BEGIN WP Hide & Security Enhancer
END WP Hide & Security Enhancer
At this point, the site should run as before. If for some reason still not working, you missed something, please get in touch with us at firstname.lastname@example.org and we’ll fix it for you in no time!
Please get in touch with us and we’ll do our best to include it for a next version.
Hide and increase Security for your WordPress site using smart techniques. No files are changed…View Cart
Search & Replace data in your database with WordPress admin, replace do...
WooCommerce AJAX Product Filters - Advanced product filtering ability for y...
Flexible button creator allowing you to stick floating buttons to the side ...
The General Data Protection Regulation (GDPR) is a regulation in EU law on ...