Join Agency Program today.

2x Leads & 50% Cost Savings on Hosting. Join Agency Program today.

Apply Now
Log In
Get Started
WordPress Plugins
Honeypot for Contact Form 7

Honeypot for Contact Form 7

Honeypot for Contact Form 7 adds honeypot non-intrusive anti-spam functionality to CF7 forms.
Rating:
3.8
star-rating-1star-rating-2star-rating-3star-rating-4star-rating-5
Active Installations:
300000+
Last Updated:
Sep 29, 2025
WordPress Version:
4.8 or higher
Tested up to:
6.8.3
Try Demo
Download

Simple and Effective

Prevent contact form spam easily

Trusted by 400,000+

Join our massive community of WordPress users

Silent and Efficient

Block spam bots without bothering visitors

Only Legitimate Submissions

Rest assured with our honeypot solution

Author’s Site Author Site view

3.1.1 – September 29, 2025

  • IMPROVEMENT – Added Collapse Icon On CF7 Apps All Apps Menu
  • IMPROVEMENT – Added validation on CF7 Apps Installation before Contact Form 7
  • FIX – Database Entries Pagination was not working in some cases
  • FIX – PHP error when upgrading from older versions
  • FIX – Database Entries tab was not visible in some cases

3.1.0 – September 17, 2025

  • NEW – Introducing Database Entries.
  • IMPROVEMENT – Moved CF7 Apps under Contact Form 7.

3.0.1 – September 02, 2025

  • Code Optimization

3.0.0 – July 16, 2025

  • NEW – Introducing CF7 Apps, All new Dashboard.
  • NEW – Introducing hCaptcha.

2.1.7 October, 13, 2024

  • Fixed compatibility issues with CF7 6.0
  • Tested compatibility with latest WordPress (Version 6.7)

2.1.6 October, 05, 2024

  • Fixed compatibility issues with CF7 6.0

2.1.5 September, 25, 2024

  • Removed warning from CF7 when honeypot is added.

2.1.4 August, 22, 2024

  • Added new dependency feature.
  • Localized date settings in settings page
  • Added new datatable which shows a honeypot used in from or not.

2.1.3 July 01, 2024

  • Tweak: Updated old URLs

2.1.2

Changed contributor to WPExperts

2.1.1

Fixes small bug when enabling in bulk with other plugins.

2.1

Added new feature: additional submission time check to improve bot-stopping power! Also, fixed small HTML issue and tidied up shortcode interface.

2.0.5

Improved backwards compatibility. Solves issues when plugin installed on older versions of CF7.

2.0.4

Better error checking for missing config problems.

2.0.3

General code cleanup, better adherence to WP coding standards and fixes for i18n functions.

2.0.2

Replaced text domain constant with plain string for better i18n compatability.

2.0.1

Hotfix for issue with options not being set on upgrade.

2.0

A significant update with a bunch of new things. Please see the release notes.

1.14.1

Minor update to change name to comply with CF7 copyright notice.

1.14

Added do-not-store for when forms are stored in the DB (i.e. Flamingo). Improved wrapper ID masking and customization.

1.13

Additional functionality to improve spam-stopping power.

1.12

Introduces ability to force W3C compliance. See here for details.

1.11

Addresses accessibility concerns regarding a missing label and disables autocomplete to prevent browser autocomplete functions from filling in the field.

1.10

Updates for Function/Class changes related to CF7 4.6. Removed plugin local language support, instead use translate.wordpress.org.

1.9

Added i18n support, French language pack. Thx chris-kns

1.8

Added wpcf7_honeypot_accessibility_message and wpcf7_honeypot_container_css filters, i18n support.

1.7

Provides backwards compatibility for pre-CF7 4.2, introduces ability to remove accessibility message.

1.6.4

Quick fix release to fix PHP error introduced in 1.6.3.

1.6.3

Updates to accommodate changes to the CF7 editor user interface.

1.6.2

Small change to accommodate validation changes made in CF7 4.1.

1.6.1

Small change to accommodate changes made in CF7 3.9.

1.6

Quite a lot of code clean-up. This shouldn’t result in any changes to the regular output, but it’s worth checking your forms after updating. Also, you’ll note that you now have the ability to add a custom CLASS and ID attributes when generating the Honeypot shortcode (in the CF7 form editor).

1.5

Added filter hook for greater extensibility. See installation section for more details.

1.4

Update to make compatible with WordPress 3.8 and CF7 3.6. Solves problem of unrendered honeypot shortcode appearing on contact forms.

1.3

Update to improve outputted HTML for better standards compliance when the same form appears multiple times on the same page.

1.2

Small update to add better i18n and WPML compatibility.

1.1

Small update for W3C compliance. Thanks Jeff.

1.0.0

  • Initial release.

Decent protection when used in conjunction with others

By Charles (charlesrodmell) on October 21, 2025

Great, fast support from these guys when I mentioned a bug. I use the honeypot and the timecheck to help reduce botspam. Plus now it has form entries, I can delete a separate plugin I was using for that. I don't use hCaptcha (using Turnstile instead), so can't comment on that area.

I see a lot of people saying they still get spam, but I'd expect that if they are only using this plugin. This plugin is just one part of the puzzle. I get zero spam from my forms because I use the following.

CF7 Apps (this app) - the honeypot and timecheck features.
Message Filter for Contact Form 7 - block messages with links etc.
Cloudflare Turnstile
Cloudflare DNS Managed Challenges for some countries

Disappointed

By kozakr on October 4, 2025

Once a simple, excellent plugin. Now bloated and overcomplicated. Very sad.

Not great

By Roberto Vazquez (Weiko) on September 3, 2025

Long time user of the plugin in multiple websites now in search for an alternative.

The takeover has been rough and now i have another plugin claiming space in the menu. I guess everything was according to the rules but still feels wrong.

Useless Entry in WordPress Menu

By georg.r on September 2, 2025

The plugin does what it should but why you need to create a dashboard for your plugins.
Just public the two plugins separately and let the WordPress backed clean.

I really think this should be avoided by any Plugin or even prevent from WordPress itself. Users can simply access the settings from the plugins menu.

I don't know if it is a ego thing or something that every plugin has to have its on Menu entry and dashboard.

seems like a hostile takeover of the real CF7

By mmtomm on August 14, 2025

It feels like the plugin was captured from CF7, it appears to me like a hostile takeover, bringing bloat into my dashboard.

Worst of all, it suddenly appeared beside my plugins, never actively installed it by myself.

yet another totally useless dashboard

By Quentin Le Duff (quentinldd) on August 5, 2025

I've been using this plugin for several years and even published a tutorial in French (Comment configurer Honeypot for Contact Form 7) on my own website to help people set it up right.

I really liked the way it was lightweight, efficient, and non-invasive. What a pity to discover in an update: yet another totally useless dashboard.

I understand the need for upsells to fund the development process, I really do. But it pisses me off to see this enshitification something that was high-quality before.

It really makes people want to fork the plugin to clean it up.

Please bring us back the quality plugin you made, and stop with the useless option pages for pity's sake.

I feel betrayed

By Nilo Velez (nilovelez) on July 26, 2025

This used to be a simple, free, honeypot plugin for CF7

It has been taken over and now it is a useless piece of bloatware.

Name change leads to confusion

By Maik Bernstein (bmaik) on July 24, 2025

This used to be a really good plugin, but with the recent name change and the new and super confusing migration menu item, I'll probably say goodbye to it. What a shame.

Changing the name of the plugin

By Joe (yosie1) on July 21, 2025

Changing the name of the plugin CF7Apps, a bad idea, unethical, gives the misleading impression that the plugin is from the same developer as CF7.
In addition, the migration screen, misleading, adds weight to the site, disappointing.

alert from Avast antivirus: script:snh-gen

By Arcusweb (babouille) on July 2, 2024

<font style="vertical-align: inherit;"><font style="vertical-align: inherit;">La dernière version de Honeypot for Contact Form 7, la version 2.1.3, comporte une alerte de sécurité de l'antivirus Avast : script:snh-gen. En conséquence, j'ai dû réinstaller l'ancienne version. J'espère qu'il s'agit d'un bug et non d'un changement de propriétaire du plugin.</font></font>

UPDATE : In fact, the problem stems from the contact form and the fact that it appears at the same time as the latest update is pure chance. So, if others are reading this topic, the culprit is contact form 7.

C.Thierry

More Reviews
Try other plugins too!
Captcha by BestWebSoft – Spam Protection, Security Plugin for WordPress Forms

Captcha by BestWebSoft – Spam Protection, Security Plugin for WordPress Forms

1 super security anti-spam captcha plugin for WordPress forms.

Try Demo More Details
Akismet Anti-Spam: Spam Protection

Akismet Anti-Spam: Spam Protection

The best anti-spam protection to block spam comments and spam in a contact form. The most trusted antispam solution for WordPress and WooCommerce.

Try Demo More Details
Email Encoder – Protect Email Addresses and Phone Numbers

Email Encoder – Protect Email Addresses and Phone Numbers

Protect email addresses and phone numbers on your site and hide them from spambots. Easy to use & flexible.

Try Demo More Details
Screenshots
Author Site Author Site

Try Honeypot for Contact Form 7 With InstaWP

Try Demo

Contact Sales

Reach out to us to explore how InstaWP can benefit your business.