Title: Defender Security – Malware Scanner, Login Security & Firewall Author: WPMU DEV - Your All-in-One WordPress Platform Published: June 7, 2017 Last modified: March 3, 2026 --- Search plugins ![](https://ps.w.org/defender-security/assets/banner-772x250.png?rev=2625059) ![](https://ps.w.org/defender-security/assets/icon-256x256.gif?rev=3435930) # Defender Security – Malware Scanner, Login Security & Firewall By [WPMU DEV – Your All-in-One WordPress Platform](https://profiles.wordpress.org/wpmudev/) [Download](https://downloads.wordpress.org/plugin/defender-security.5.10.0.zip) * [Details](https://wordpress.org/plugins/defender-security/#description) * [Reviews](https://wordpress.org/plugins/defender-security/#reviews) * [Installation](https://wordpress.org/plugins/defender-security/#installation) * [Development](https://wordpress.org/plugins/defender-security/#developers) [Support](https://wordpress.org/support/plugin/defender-security/) ## Description **Defender adds the best in WordPress plugin security to your website with just a few clicks, including malware scanner, firewall, password protection, and login security features. Stop brute force login attacks, weak password usage, SQL injections, cross-site scripting (XSS), and other WordPress security vulnerabilities and hacks with Defender’s malware scanner, providing antivirus scans, IP blocking, firewall, activity log, security log, and two-factor authentication (2FA) login security.** No more complex security settings, Defender’s malware scanner, firewall, and login security features add all the hardening and security you need. Defender is brought to you by the WordPress speed specialists that created Smush image optimization, now active on more than +1 million websites. Plus, connect for free to WPMU DEV’s AntiBot Global Firewall to block harmful IPs with data from over 750,000 sites. **Enjoy complete site protection from malware, vulnerabilities, bot attacks, and session hijacking from the start with [Defender Pro](https://wpmudev.com/project/wp-defender/?utm_source=wordpress.org&utm_medium=readme&utm_campaign=defender-readme-above-the-fold&utm_content=wp_defender_pro).** Level up security immediately with exclusive Pro features like scheduled malware scanning, Safe Repair for suspicious files, and known WordPress vulnerability detection. [Learn more about Pro](https://wpmudev.com/project/wp-defender/?utm_source=wordpress.org&utm_medium=readme&utm_campaign=defender-readme-above-the-fold&utm_content=wp_defender_pro). ### Security Recommendations Defender’s one-click security hardening recommendations instantly adds layers of protection and security to your site. ### Enhance Security and Block Hackers At Every Level: * **Malware Scanner** – Scan WordPress core files for modifications and unexpected changes which may be caused by malware. Scan for malware and tighten up the security of your files. * **Outdated & Removed Plugins** – Scans for plugins removed from WordPress.org or not updated in 2+ years. * **AntiBot Global Firewall** – Connect for free to WPMU DEV to block harmful IPs with data from over 750,000 sites. * **WordPress Security Firewall** – Block or allowlist IPs, implement IP blocking, and Geo IP blocking, user agent banning and protect against brute force attacks. * **Two-Factor Authentication (2FA)** – Easily set up better security with 2FA to prevent most login attacks such as brute force, App verification, backup codes, lost device email, WooCommerce 2FA, and Web Authentication. * **Login Masking** – Change the location of WordPress’s default login area to improve login security. * **Login Lockout** – Failed login attempts lockout for even more security assurance. * **User Agent Banning** – Fortify security by blocking bad bots and user agents from accessing your site. * **Security Headers** – Add an extra layer of defense security and protect against common attacks like: XSS, code injection, and more. * **404 Detection Security** – Automated block of bot IPs. * **Security Configs** – Create your ideal Defender security plugin settings and export / import saved configs to any other site. * **Geolocation IP Lockout Security** – Block users based on location and country( IP blocking). * **Disable Trackbacks And Pingbacks** – Disable these notifications to enhance spam protection and site security. * **Core And Server Update Security Recommendations** – Stay on top of your system security. * **Antivirus Scan** – Scan for active security threats, viruses, and other malware. * **Disable File Editor** – If they get in, they won’t get far. * **Hide Error Reporting** – Hide code errors on the frontend so hackers can’t exploit site security. * **Update Security Keys** – Update old WordPress security keys to be more encrypted and provide better security. * **Prevent Information Disclosure** – Improve server security and protect sensitive files by locking down specific file types. * **Prevent PHP Execution** – Defender bolsters security by automatically preventing any PHP code from being executed. * **Bulk Apply Security Recommendations** – Apply multiple recommended security improvements at once for quicker site hardening. * **Google reCAPTCHA Security** – Easy to add, stop fraud and abuse – including BuddyPress and WooCommerce. * **Cloudflare Turnstile** – Captcha-free protection from spam and automated attacks, including BuddyPress and WooCommerce support. * **Pwned Password Check** – Increase security by protecting against compromised passwords. * **Force Password Reset** – Force users with selected roles to reset passwords. * **Force Strong Passwords** – Ensure users create secure credentials by enforcing robust password requirements. * **User Agent Blocklist Presets** – Easily block unwanted bots and scripts using curated user agent presets. * **Known Vulnerability & Suspicious Code Scan (Pro Only)** – Scan WordPress core, themes, and plugins for vulnerabilities and harmful code. * **Malicious Bot Detector (Pro Only)** – Block malicious bots with layered defenses, including traps for bots that ignore robots.txt and checks for fake crawlers posing as search engines. * **Google Blocklist Monitoring (Pro Only)** – Get instant alerts if your site is flagged by Google. * **Session Protection (Pro Only)** – Stop session hijacking and prevent unauthorized account access. * **Safe Repair For Suspicious Files (Pro Only)** – Restore or replace compromised files safely with a single click. * **Automated Reports (Pro Only)** – Receive scheduled security reports straight to your inbox. ### Learn The Ropes With These Hands-On Defender Security Plugin Tutorials * [How to Get the Most Out of Defender Security](https://wpmudev.com/blog/how-to-get-the-most-out-of-defender-security/) * [How to Stop Hackers in Their Tracks with Defender Security](https://wpmudev.com/blog/stop-hackers-with-defender-wordpress-security-plugin/) * [Find Out if You’re Hacked: How to Find and Delete Suspicious Code with Defender Security](https://wpmudev.com/blog/delete-suspicious-code-defender/) * [How to Create a Powerful and Secure Customized Firewall with Defender Security](https://wpmudev.com/blog/defender-ip-address-lockout-firewall/) ### WordPress Security Scans Defender’s malware scanner security checks for suspicious code and malware. It also compares your WordPress install with the WP directory master copy, and reports any changes so you can restore the original file with a click. ### Two-Factor Authentication (2FA) Security Easily add an extra layer of protection and security to your WordPress sites with Defender’s two-factor authentication (2FA) features. Including: mobile app verification( Google Authenticator, Microsoft Authenticator, Authy), backup code generation, lost device emails, WooCommerce 2FA, Biometric Authentication (fingerprint/facial recognition), and Hardware Key Authentication (USB security keys). Easily prevent brute force attacks and login security vulnerabilities. ### Login Protection Brute force attacks are no match for Defender’s login security. Limit login attempts so hackers can’t guess passwords. Permanently ban IPs or trigger a timed lockout after a set number of failed login attempts. Use Geo IP blocking to ban users from specific countries or locations. ### Firewall Security and IP Manager Improve your website security with Defender’s IP manager and firewall. Manually block specific IPs, import a list of banned IPs, and set automated timed and permanent lockouts. Defender makes it easy to block and unblock specific locations quickly thanks to its advanced firewall security(WAF) offering Geographical IP blocking. ### User Agent Banning Add user agents to the block or allowlist and stop bad bots from spamming and scraping your site. All major search engines and special network bots are allow-listed out of the box. Easy to set up, Defender’s user agent banning tool now includes built- in bot and script presets to help you quickly block malicious traffic. It does all the security work for you—no editing of the .htaccess file required. ### Google reCAPTCHA Integration Add reCAPTCHA security to your login / registration pages, lost password forms, and post comments in a couple of steps to up security and help protect from fraud and abuse. Select reCAPTCHA type, language, location, and style to suit. As well as Google, Defender also supports the following reCAPTCHA types: * BuddyPress reCAPTCHA * WooCommerce reCAPTCHA ### Login Screen Masking Defender makes it easy to move your login screen to a custom URL. Not only does login screen masking improve security, but it also lets you white label your login user experience and improves branding. ### Force Password Reset Enhance site security by forcing all users with selected roles to reset their password at any time. Especially helpful if you suspect a possible data breach on your site. ### Security Headers Protect your site against common attacks, such as: XSS, code injection, cross site scripting, and more. Enable the following security headers: * X-Frame-Options * X-XSS-Protection * X-Content-Type-Options * Strict Transport * Referrer Policy * Permissions-Policy ### 404 Limiter Detect when bots are being used to scan your site for security vulnerabilities and shut them down. The 404 limiter lets you stop the scan by detecting when a bot keeps visiting pages that do not exist, which can also save you from a giant strain on your site’s performance. ### Security Notifications and Reports Defender runs surveillance and sends security notifications with information that matters. All activity and notifications are recorded in the activity log to let you see at a glance the website security actions that have been taken by the Defender security plugin. ### Reduce Security Setup Time With Saved Configs Save your Defender security plugin configurations and reapply them to your other sites in just a few clicks. You can create and save an unlimited number of security configurations. ### Pwned Password Check Entered passwords are checked against public database breach records to further boost security. If a password is identified as compromised, the user will be asked to change it. ### Custom IP Block/Allowlist Create your IP block/allow list once, then apply and automatically sync it to all your other sites with just a single click. Save hours by not having to manually add IPs to each individual site. *Note: a [free WPMU DEV account] (https://wpmudev. com/register) is required to access this feature. ### What Do People Say About Defender? ★★★★★ “I found other pro security plugins a bit too fiddly for my taste…I’m delighted with Defender” – [KeithADV](https://profiles.wordpress.org/keithadv) ★★★★★ “Thank you for bringing back a free and easy to use 2-Factor Authentication after Clef! Defender helps keep me aware of my site’s security.” – [awijasa](https://wordpress.org/support/users/awijasa/) ★★★★★ “Defender’s interface is very intuitive with warnings that are very helpful”– [djohns](https://wpmudev.com/profile/djohns) ★★★★★ “Defender Recently blocked over 3000 attacks in one week without any noticeable impact on the website. WPMUDEV knocking it out of the park on this one.” – [David Oswald](https://wpmudev.com/profile/davidoswald/) ### Secure Websites, More Trust, Better Profit If you’re running a business website or eCommerce store, privacy, security, uptime and trust are essential. The Defender security plugin is here to help you: it’s a one of a kind WordPress security plugin that makes web security easy for anyone, for free! * Malware scanner * Google two-factor authentication (2FA) * Web Authentication * Firewall setup and configuration * One-click site hardening and security tweaking * WordPress core file scanning and repair * Ongoing firewall security * Google reCAPTCHA * Security headers * One-click security configs * Login Screen Masking * Pwned Password Check * IP Blocklist manager and logging * Geo IP blocking * User agent banning * Unlimited file scans * Timed Lockout brute force login attack shield for login security * 404 limiter for blocking vulnerability scans * IP lockout notifications and security reports All the above is free and will enhance WordPress security for you. If you need extra security for your WordPress site, [you should get a WPMU DEV Membership](https://wpmudev.com/?utm_source=wordpress.org&utm_medium=readme&utm_campaign=defender-readme&utm_content=you_should_get_wpmudev_membership#trial). Our Membership gives you access to Defender Pro – which security features include automated scanning, scheduled malware scans for Core, themes, plugins and other files, audit logs, firewall protection, Safe Repair, Blocklist monitoring – alongside Snapshot Pro cloud backups, the Hub with automated plugin, theme and core updates and safe-upgrade scans, all our premium WordPress plugins, 24/7 WordPress support and if your sites already been hacked our team of security experts will clean it up at no additional cost. [It’s an incredible deal, and you can find out more here](https://wpmudev.com/?utm_source=wordpress.org&utm_medium=readme&utm_campaign=defender-readme&utm_content=and_you_can_find_out_more_here#trial). ### About Us WPMU DEV is a premium supplier of quality WordPress plugins and themes. For premium support with any WordPress-related issues you can join us here: [https://wpmudev.com/](https://wpmudev.com/?utm_source=wordpress.org&utm_medium=readme&utm_campaign=defender-readme&utm_content=wpmu_dev_link) Don’t forget to stay up to date on everything WordPress from the Internet’s number one resource: [WPMU DEV Blog](https://wpmudev.com/?utm_source=wordpress.org&utm_medium=readme&utm_campaign=defender-readme&utm_content=wpmu_dev_blog_link) Hey, one more thing… we hope you [enjoy our free offerings](https://profiles.wordpress.org/WPMUDEV/) as much as we’ve loved making them for you! ## Screenshots * [[ * Malware scans and one-click website security hardening recommendations. * [[ * Layered security recommendations let you harden your site with a few clicks. * [[ * Enable AntiBot & Local Firewall for smart, layered defense against bots and brute- force attacks. * [[ * Keep your account safe with 2FA options including TOTP apps, backup codes, and secure fallback methods. * [[ * Use built-in password rules to ensure only secure, uncompromised passwords are used. * [[ * Never miss a threat—Defender emails you security updates on your schedule. ## Installation 1. Upload the `wp-defender` plugin to your `/wp-content/plugins/` directory. 2. Activate the plugin through the ‘Plugins’ menu in WordPress. 3. Configure and manage using the `defender` menu item in the WordPress dashboard. 4. Done! ## FAQ ### Why should I choose Defender over other security plugins? Defender is built to add all the best hardening and website security recommendations used by the pros without having to become a security expert. This means you get all the most effective and proven protection methods other services provide with fewer settings, one-click hardening and faster setup. ### Is installing Defender the only step I need to take for better WordPress security? Hackers and bot attacks are not the only security threats to your site. No matter what security plugin or service you use, always be prepared with a secure backup stored in a safe location away from your live site. Security does not protect from hosting outages, server errors and accidentally lost or damaged data. We recommend [Snapshot](https://wpmudev.com/project/snapshot/?utm_source=wordpress.org&utm_medium=readme&utm_campaign=defender-readme&utm_content=snapshot#trial). Defender with scheduled managed backups is the best way to keep your site safe. ### Does Defender security protect against harmful bots? Yes! Defender’s Firewall gives you robust site protection and security by allowing you to block bad bot IPs and use geographical IP blocking ### Can I use Defender with other security plugins? You can. Just make sure not to enable the same security features in the third-party plugin that you also have enabled in Defender, as this might cause conflicts, such as malware scanners, firewall, and login security features. ### Is Defender’s security compatible with WordPress Multisite? Yes! All of Defender’s security features are fully compatible with a multisite installation. It can be network enabled and managed from the network admin. ### Does Defender offer spam protection and security? Yes, Defender provides multiple layers of spam protection and security. A large percentage of Trackbacks and Pingbacks are spam, and Defender allows you to easily disable both to reduce spam and improve site security. Additionally, Defender includes the AntiBot Global Firewall, which blocks known malicious IPs and bots before they even reach your site, offering proactive protection against common attacks and spam bots. ### Will my site be protected from DDoS attacks and similar security threats? Yes. Defender’s IP banning, IP lockout, and 404 detection security features can identify DDoS attacks and block bad IPs. ### I’ve locked myself out of my admin panel, what can I do? If you’re the administrator and you’ve been locked out due to multiple failed login attempts, Defender offers two options: Option #1: Use the “Unlock Me” feature: Click the Unlock Me button on the login page and enter your username or the email address linked to your site. You’ll receive an email with a secure link to unlock your account and regain access — no technical steps needed. Option #2: Use the manual method (if email doesn’t work): Add the following code to your theme’s functions.php file, located in the main directory of your active theme. ``` add_filter( 'ip_lockout_default_whitelist_ip', function ( $ips ) { $ip = 'YOUR IP HERE'; $ips[] = $ip; return $ips; } ); ``` Replace “YOUR IP HERE” with your actual IP address (you can use a tool like whatsmyip to find it.) ### Help! I was already hacked. What should I do? WPMU DEV’s expert support can advise you on how to clean up your site if it’s been hacked. Create a new thread in our [support forum](https://wordpress.org/support/plugin/defender-security/), or [Defender Pro](https://wpmudev.com/project/wp-defender/) gives you access to 24/7 live support. ### How can I report security issues or bugs? We take plugin security incredibly seriously; if you have a bug or vulnerability to report, you can do so through the Patchstack Vulnerability Disclosure Program. It’s fast, easy, and you will be notified when the issue is fixed. [Report a vulnerability](https://patchstack.com/database/vdp/defender-security). ### I have another question, where’s the best place to get help with security? Please open a new thread in Defender’s [support forum](https://wordpress.org/support/plugin/defender-security/). Our support team is always happy to help! ## Reviews ![](https://secure.gravatar.com/avatar/3410ee603eda86a9feda08f96841213dfb65a2ed17270d444620d3965c4e827e? s=60&d=retro&r=g) ### 󠀁[Excellent app](https://wordpress.org/support/topic/excellent-app-105/)󠁿 [ivanhomecom](https://profiles.wordpress.org/ivanhomecom/) March 18, 2026 1 reply Excellent app I recoment ![](https://secure.gravatar.com/avatar/422fe1aa292d26511156675241f18e0e71bde34cf1f0cd815bc4ffcca503ee36? s=60&d=retro&r=g) ### 󠀁[Defender 5.10.0](https://wordpress.org/support/topic/defender-5-10-0/)󠁿 [Mykola Kolos](https://profiles.wordpress.org/kolosmykola/) March 14, 2026 1 reply After updating to version 5.10.0, it conflicts with Elementor Pro version 3.35.7It causes it to switch to safe mode.Disabling the plugin resolved the issue.The plugin handles security tasks well. ![](https://secure.gravatar.com/avatar/45f836aeb51a92fe9afad417678fc1e20ec12a1889eb195b36dccc3759e1c1de? s=60&d=retro&r=g) ### 󠀁[Very good and secure!](https://wordpress.org/support/topic/very-good-and-secure/)󠁿 [lwloingo](https://profiles.wordpress.org/lwloingo/) March 3, 2026 1 reply Many attacks have been repelled, and you are well informed about the measures necessary to maintain protection. ![](https://secure.gravatar.com/avatar/6909d6594c024025a630b75a29963f696cca526613bb7a3a3a76c6f1417d1cce? s=60&d=retro&r=g) ### 󠀁[Best Malware help and comprehensive support – love it](https://wordpress.org/support/topic/best-malware-help-and-comprehensive-support-love-it/)󠁿 [rohitsinghvi2006](https://profiles.wordpress.org/rohitsinghvi2006/) February 27, 2026 1 reply If defender is with you you dont need to worry about your website. ![](https://secure.gravatar.com/avatar/8ed9ca18c96ded9eaab6d69eadd35851deec38b8c5db782436290ec0111f6f5f? s=60&d=retro&r=g) ### 󠀁[Awesome Plugin](https://wordpress.org/support/topic/awesome-plugin-7475/)󠁿 [shaileshbhardwaj](https://profiles.wordpress.org/shaileshbhardwaj/) January 24, 2026 1 reply Awesome Plugin ![](https://secure.gravatar.com/avatar/1a441930e837272ec80fd08d77a4418d286eaeb907844804f5266838cf71e046? s=60&d=retro&r=g) ### 󠀁[Seguridad](https://wordpress.org/support/topic/seguridad-5/)󠁿 [raulebarrios](https://profiles.wordpress.org/raulebarrios/) January 15, 2026 1 reply Excelente plugin de seguridad. [ Read all 330 reviews ](https://wordpress.org/support/plugin/defender-security/reviews/) ## Contributors & Developers “Defender Security – Malware Scanner, Login Security & Firewall” is open source software. The following people have contributed to this plugin. Contributors * [ WPMU DEV – Your All-in-One WordPress Platform ](https://profiles.wordpress.org/wpmudev/) “Defender Security – Malware Scanner, Login Security & Firewall” has been translated into 15 locales. Thank you to [the translators](https://translate.wordpress.org/projects/wp-plugins/defender-security/contributors) for their contributions. [Translate “Defender Security – Malware Scanner, Login Security & Firewall” into your language.](https://translate.wordpress.org/projects/wp-plugins/defender-security) ### Interested in development? [Browse the code](https://plugins.trac.wordpress.org/browser/defender-security/), check out the [SVN repository](https://plugins.svn.wordpress.org/defender-security/), or subscribe to the [development log](https://plugins.trac.wordpress.org/log/defender-security/) by [RSS](https://plugins.trac.wordpress.org/log/defender-security/?limit=100&mode=stop_on_copy&format=rss). ## Changelog #### 5.10.0 ( 2026-02-26 ) * Enhancement: Improve AntiBot Stats endpoint * Enhancement: Improve handling of response data in the Audit API * Enhancement: Update malware signatures * Enhancement: Improve suspicious issue view on the Malware Scanning page * Enhancement: Include selected presets in the User Agent blocklist during export * Fix: Error when filtering the Firewall logs * Fix: Error when switching languages with WPML while Bot Trap is enabled * Fix: Strong Passwords do not work when Mask Login URL is enabled * Fix: Colored elements appear on Defender admin pages when High Contrast Mode is enabled * Fix: Exported Firewall logs do not follow the selected sort order #### 5.9.0 ( 2026-01-27 ) * New: WooCommerce and BuddyPress integrations in Cloudflare Turnstile * Enhancement: Compatibility with PHP 8.4 * Enhancement: Update malware signatures * Enhancement: Update ALTCHA functionality * Enhancement: Improve plugin code style using PHPStan * Enhancement: Refactor CAPTCHA file structure * Enhancement: Add Thinkbot user agent to Blocklist Presets * Enhancement: Display the readme file on the Malware Scanning page after it is renamed * Enhancement: Add new “Outdated and closed plugin” key to the config structure * Fix: Prevent audit logs from being created when updating a user profile without changes * Fix: Backslash character in salt generator can break the site * Fix: Update copy for Mask URL block page * Fix: Hide Settings > General > “More info” link when Whitelabel is enabled * Fix: Inconsistent validation in CAPTCHA when the Preview test is not passed * Fix: IP address and event type filters not working in the audit log export file * Fix: Masked Login URL slug validation after activation #### 5.8.1 ( 2026-01-12 ) * Enhancement: Miscellaneous improvements #### 5.8.0 ( 2025-12-24 ) * New: Detect suspicious code in JavaScript files during Malware Scanning * Enhancement: Prevent false lockouts when requests contain mixed Facebook/Twitterbot user agents * Enhancement: Update Axios and form-data package versions * Enhancement: Update malware signatures * Enhancement: Split Bulk checkboxes between tabs on Malware Scanning page * Enhancement: Display Disconnect Site button on Defender’s general settings screen * Enhancement: Improve plugin code style using PHPStan * Enhancement: Improve UI for background Malware Scanning * Enhancement: Restore reCAPTCHA class alias for backward compatibility * Enhancement: Add new audit logging events * Enhancement: Migrate notification events to the centralized Cron Manager * Enhancement: Migrate common plugin events to the centralized Cron Manager * Fix: Update .htaccess rules for LiteSpeed servers * Fix: Duplicate user agent records in robots.txt * Fix: Extra space and hidden Google reCAPTCHA field shown on multisite registration page * Fix: Duplicates of Ignored Scan issues * Fix: Deprecation warnings from the thecodingmachine/safe package in PHP 8.4 * Fix: Quarantine activation link does not work in the free version * Fix: Incorrect “Configure” button flow in the Firewall widget on the Dashboard * Fix: UI improvements #### 5.7.2 ( 2025-12-15 ) * Enhancement: Miscellaneous improvements #### 5.7.1 ( 2025-11-24 ) * Fix: Improve 404 detection flow #### 5.7.0 ( 2025-11-18 ) * New: Cloudflare Turnstile integration * Enhancement: Compatibility with WordPress 6.9 * Enhancement: Redesigned CAPTCHA menu * Enhancement: Optimize database performance on multisite * Enhancement: Add additional widget IDs on Defender’s Dashboard page * Enhancement: Add new hooks to simplify Audit testing and Firewall logs deletion * Enhancement: Update minimum supported PHP version to 8.0 * Enhancement: Disable New Scan button until the background scan is complete * Enhancement: Migrate Security Recommendations multisite events to the centralized Cron Manager system * Enhancement: Migrate Malware Scanning multisite events to the centralized Cron Manager system * Enhancement: Tracking improvements * Fix: Masking URL displays a notice when using a slug already assigned to another page * Fix: Defender not detecting some outdated plugins * Fix: Recommended PHP version appears as NULL on WP Engine hosting * Fix: Default Security Config name and description not saving properly * Fix: UI improvements #### 5.6.2 ( 2025-11-20 ) * Enhancement: Miscellaneous improvements [Changelog for previous versions](https://wpmudev.com/project/wp-defender/#view-changelog). ## Commercial plugin This plugin is free but offers additional paid commercial upgrades or support. [View support](https://wpmudev.com/project/wp-defender/) ## Meta * Version **5.10.0** * Last updated **1 month ago** * Active installations **90,000+** * WordPress version ** 6.4 or higher ** * Tested up to **6.9.4** * PHP version ** 8.0.0 or higher ** * Languages * [Bengali (Bangladesh)](https://bn.wordpress.org/plugins/defender-security/), [Catalan](https://ca.wordpress.org/plugins/defender-security/), [Chinese (China)](https://cn.wordpress.org/plugins/defender-security/), [Chinese (Hong Kong)](https://zh-hk.wordpress.org/plugins/defender-security/), [Dutch](https://nl.wordpress.org/plugins/defender-security/), [English (US)](https://wordpress.org/plugins/defender-security/), [Greek](https://el.wordpress.org/plugins/defender-security/), [Malayalam](https://ml.wordpress.org/plugins/defender-security/), [Polish](https://pl.wordpress.org/plugins/defender-security/), [Portuguese (Brazil)](https://br.wordpress.org/plugins/defender-security/), [Portuguese (Portugal)](https://pt.wordpress.org/plugins/defender-security/), [Russian](https://ru.wordpress.org/plugins/defender-security/), [Spanish (Argentina)](https://es-ar.wordpress.org/plugins/defender-security/), [Turkish](https://tr.wordpress.org/plugins/defender-security/), [Ukrainian](https://uk.wordpress.org/plugins/defender-security/), and [Vietnamese](https://vi.wordpress.org/plugins/defender-security/). * [Translate into your language](https://translate.wordpress.org/projects/wp-plugins/defender-security) * Tags * [firewall](https://wordpress.org/plugins/tags/firewall/)[login security](https://wordpress.org/plugins/tags/login-security/) [malware](https://wordpress.org/plugins/tags/malware/)[malware scanner](https://wordpress.org/plugins/tags/malware-scanner/) [security](https://wordpress.org/plugins/tags/security/) * [Advanced View](https://wordpress.org/plugins/defender-security/advanced/) ## Ratings 4.8 out of 5 stars. * [ 301 5-star reviews ](https://wordpress.org/support/plugin/defender-security/reviews/?filter=5) * [ 11 4-star reviews ](https://wordpress.org/support/plugin/defender-security/reviews/?filter=4) * [ 5 3-star reviews ](https://wordpress.org/support/plugin/defender-security/reviews/?filter=3) * [ 5 2-star reviews ](https://wordpress.org/support/plugin/defender-security/reviews/?filter=2) * [ 8 1-star reviews ](https://wordpress.org/support/plugin/defender-security/reviews/?filter=1) [Add my review](https://wordpress.org/support/plugin/defender-security/reviews/#new-post) [See all reviews](https://wordpress.org/support/plugin/defender-security/reviews/) ## Contributors * [ WPMU DEV – Your All-in-One WordPress Platform ](https://profiles.wordpress.org/wpmudev/) ## Support Issues resolved in last two months: 5 out of 5 [View support forum](https://wordpress.org/support/plugin/defender-security/)