Description

Limit Login Attempts provides a comprehensive security package to secure your site. We provide Limit login attempts, Brute force Protection, Google reCAPTCHA, Spam Protection, Rename Login URL, IP blocking, DOS protection, Login Security, Rate Limiting, and traffic blocking to secure your site against bots.
Limit Login Attempts will protect from the advanced brute force by Limit login, Ip blocking, rename login URL, and protection from spam/bot by Google Recaptcha.

Features :-

LIMIT LOGIN ATTEMPTS

Limit Login Attempts to protect your site from attacks that try to gain access/login to a site with random usernames and passwords. A Brute Force Attack is the simplest kind of method to gain access to a website. You can limit the login attempts made by an IP and block it as well. Limit Login Attempts

LOGIN SECURITY

We help you protect your website against brute force login attacks by blocking an IP address of the hacker after a specified limit of failed login attempts.
When using Limit Login Attempts, you can block the user after certainly failed login attempts thus providing extra login security.

SPAM PROTECTION

Spam protection protects your site using Google reCAPTCHA.

Rename Login URL

Every website has default login URLs, which all hackers, bots, and malicious attackers are aware of. Once they reach your login page, they only need to guess your password to gain access, which is why protecting your site’s login page by Rename login URL is critical for its security.

Google Recaptcha

Google Recaptcha secures you from Brute force attacks on the login and registration page.

BRUTE FORCE ATTACKS PROTECTION

By default, WordPress allows users to try different passwords as many times as they want, this is also known as a brute force attack. However, you can change this and add an extra layer of login security to protect your site.
Brute Force Limit Login Protection with IP Blocking security help you monitor login attempts from your users and hackers. We keep track of user’s login attempts and we send alerts to administrators for unusual activities if someone exceeds allowed failed login attempts.

BLOCK REGISTRATIONS FROM FAKE USERS

Spam protection of Limit Login Attempts helps you detect suspicious email addresses instantly and provides a means for effective spam protection.
* Realtime Global IP blocking – It protects your website from malicious IPs and lets the genuine traffic on your WordPress.
* Rate Limiting – It controls the number of incoming requests from a specific IP to your website
* Login Security – Limit Login Attempts and track user login attempts
* Anti Spam Protection: Spam protection protects your website from spammers by using google Recaptcha for comments
* User Registration Security – Disallow Disposable / Fake email addresses
* Brute Force Login / Attacks Protection (Login Security) – We keep track of users’ login attempts and we send alerts to administrators for unusual activities if someone exceeds allowed failed login attempts.
* IP Blocking – Manual and automatic blocking of IPs ( Blacklisting and whitelisting included ).
* Protection for WordPress files – We provide you the option to prevent access to users from browsing directory content and editing files from WP Dashboard (Themes and plugins).
* Google reCAPTCHA protection for login, and registration.

Advanced Features :-

Advanced Blocking – Block users based on: IP range, Country, Browser / User-Agent, Referer, and HostName (DNS)
Htaccess Website Security Protection- Secure your website from unintended users with access website security protection which blocks user requests on the server(apache) level. htaccess vs firewall
Comment SPAM Filter and Site SPAM Check/Spam Protection – We check if your website is generating SPAM to protect your website from getting blocked by search engines.
SPAM Protection and google reCAPTCHA for comments – Google reCAPTCHA protects your website from spam and abuse. Google reCAPTCHA uses an advanced risk analysis engine and adaptive google reCAPTCHAs to keep automated software from engaging in abusive activities on your site.
Notification to admin and end users – Send Email Alerts for IP blocking and unusual activities with a user account
DOS (Denial of service) attacks protection – Protect your resources from DOS attacks by slowing down attackers by delaying response and increasing delay in each of his requests and eventually blocking them entirely.
Country Blocking – If you have a website that gets inundated with SPAM or hacking attempts from visitors or bots originating from certain countries we can help you block those attempts.

Screenshots

Dashboard
Login Protection
IP Blocking
Firewall
Rate Limiting
Content and spam protection
Reports

Installation

From your WordPress dashboard

Visit Plugins > Add New
Search for `Limit Login Attempts. Find and install the plugin.
Activate the plugin from your Plugins page

From WordPress.org

Download `The Limit Login Attempts plugin.
Unzip and upload the wp-security-pro directory to your /wp-content/plugins/ directory.
Activate the plugin from your WordPress dashboard.

Once Activated

Go to Settings-> Limit Login Attempts, and follow the instructions.
Click on Save

FAQ

What Login Security Features do I get in the Limit Login Attempts plugin?

We help you protect your website against brute force login () attacks by blocking an IP address of the hacker after a specified limit of failed login attempts within a specified time.
We provide Login Security by Limit login attempts, Brute force Protection, Spam Protection, IP blocking, IP range blocking, Google reCAPTCHA, Rename Login URL, DOS protection, Secure login, Ban, and Security.

How is the miniOrange Limit Login Attempts plugin Different?

Limit Login Attempts is designed in such a way so that it can provide brute force, and DOS protection for all the users.
Limit Login Attempt will help you from spam protection by the Google ReCaptcha v3, v2.
Limit Login Attempt will help you to prevent hackers, bots, and malicious attackers by Rename Login URL because They can easily penetrate WordPress sites so that they know where to find a WordPress site’s login page.

Do you want to support?

Please email us at info@xecurify.com or Contact us

Reviews

adams54 April 22, 2022

I really like this plugin. Simple and very efficient against brute force attack and other threats. This is must-have plugin if you want to have a peace of mind with your website. Plus a great support. Highly recommended!

dave8441 January 26, 2021

This free plugin does much more than its title implies. Brute force protection, reCaptcha for login/registration, prevent directory browsing... the author has added way too many security features to list in my review. Great support. I consider this an essential plugin for my website. Five stars definitely!

0wn3r1989 January 15, 2019

very good plugin, keep it up and update thanks

Robin September 9, 2018

Yes the plugin asks for it to be registered. So, I registered. I got an email with a one time Passcode. I entered it - ready to go. I added some IP addressees to the blacklist. I renamed wp-login.php. Job done. It works. Not a single failed login-attempt since I installed the plugin.

kudlav April 21, 2018

Unable to use this plugin without registration. You should mention it in description. I have to give one star to this app, because that's not a fair play.

danwolfe February 2, 2018

Really needed a feature added which it turns out the author was already working on, and gave me a copy of it. Works great! It now ties in with another plugin I made for clients, and redirects after the limit is reached.

Read all 16 reviews

Contributors & Developers

“Limit Login Attempts” is open source software. The following people have contributed to this plugin.

miniOrange

Translate “Limit Login Attempts” into your language.

Interested in development?

Browse the code, check out the SVN repository, or subscribe to the development log by RSS.

Changelog

5.0.2

Feedback form and issue fix.

5.0.1

Renamed Login URL issue fix.

5.0.0

Updated UI of the plugin.

4.2.0

Made changes on the UI of Limit Login and some vulnerability fixes.

4.1.0

Added some small changes: Brute force protection, Google Recaptcha, rename login page URL

4.0.80

Bug Fixes: Brute force protection, Google Recaptcha, rename login page URL

4.0.79

Bug Fixes: Brute force protection, Google Recaptcha, rename login page URL

4.0.78

Bug Fixes: Brute force protection, Google Recaptcha, rename login page URL

4.0.77

Bug Fixes: Brute force protection, Google Recaptcha, rename login page URL

4.0.76

Bug Fixes: Brute force protection, Google ReCaptcha, rename login page URL

4.0.75

Some small changes: Brute force protection, Google Recaptcha, rename login page URL

4.0.74

Some small changes: Brute force protection, Google Recaptcha, rename login page URL

4.0.73

Vulnerability Fixes: Brute force protection, Google Recaptcha, rename login page URL

4.0.72

Vulnerability Fixes: Brute force protection, Google Recaptcha, rename login page URL

4.0.71

Bug Fixes: Brute force protection, Google Recaptcha, rename login page URL

4.0.70

Bug Fixes: Brute force protection and rename login page URL

4.0.60

WP 5.8 Compatability and Bug Fixes

4.0.50

WP 5.8 Compatability and Bug Fixes

4.0.4

WP 5.7 Compatability and Bug Fixes

4.0.3

Fixed IP Blocking Issue

4.0.2

Fixed Report

4.0.1

Added Rename Login URL
Minor Bug Fixes

4.0.0

Web Application Firewall: New Features Information Update.

3.2.0

Disable XML-RPC and the option to change WordPress login URLs

1.2.5

Added session timeout

1.2.4

Updated spam protection

1.2.3

Added option to clear login security reports

1.2.1

Enhanced brute force configuration options and the time period for which IP should be blocked.

1.1.1

The first version of the plugin.

Simple and powerful

Total website protection included!

nice plugin

Works perfectly for me

Account required

Awesome Support