Better control over WordPress uploads
HSTS is HTTP Strict Transport Security, a mean to enforce using SSL even if the user access the site through HTTP and not HTTPS. Require a browser su
MP Spam Be Gone is the simplest, most effective Spam blocker.
This plugin adds shieldpass two-factor authentication using access cards for different WordPress admin access users into the WordPress login page.
Make users Read More related posts and protect WordPress from spam. Displays extracts from blog posts or useful messages.
SiteBrains blocks spam posts using a completely configurable set of rules. Both interactively as the user types and on our servers upon submission.
TheThe CAPTCHA is a WP plugin that blocks spam from comment boards and registration forms by generating simple tests that only humans can easily pass.
This plugin locks user account after given number of incorrect login attempts. This makes brute force and dictionary attacks nearly impossible.
Wired Goons Header (WGH) allows you to check and remove what's loaded in the header from plugins, themes and default options.
A WordPress utility that can be used by itself or with an active subscription from http://mycodetree.com.
Safe Your WordPress from SQL Injection Attacks.
Whisper Comment Reloaded is a WordPress plugin for commenters to control comment visibility for other viewers.
Version: 2.3.6 Some tools for securing WordPress on Rackspace's Cloud Sites hosting.
This plugin sends an email to the administrator for each login.
Allows you to easily require SSL for specific pages.
This plugin acts as a tripwire for you. It will give you a list of all files changed on your WordPress site in the last 1-99 days.
Version: 2.0 Prevent virtual directory listing services from listing the contents of directories, and/or show a page in place of a directory's l
SecureLive for WordPress
AVOID TO USE THIS PLUGIN! Change wp-admin and wp-login URL to any of your choice. Security by obscurity!
Version: 3.1 Configure SMTP mailing in WordPress, including support for sending e-mail via SSL/TLS (such as GMail).
Perfect Paper Passwords for your WordPress blog.
Changes or removes the generator meta tag to confuse hacking scripts, etc., to provide a small, additional layer of security.
Protects Categories, Pages and Posts for specific users & anonymous visitor
Removes your WordPress version from various places.
WP Plugin Security Check checks if your WordPress plugins are 'safe'.
BadPass helps to promote better password selection by warning users when they are using a common password.
Protect your forms from spam with hard to break and easy to read Secure CAPTCHA images from SecureCAPTCHA.net.
Automatically scatters invisible links to Project Honey Pot spam traps throughout your wordpress blog to help catch and stop spammers.