2x Leads & 50% Cost Savings on Hosting. Join Agency Program today.

SiteGuard WP Plugin

SiteGurad WP Plugin is the plugin specialized for the protection against the attack to the management page and login.

Rating:

4.3

Active Installations:

500000+

Last Updated:

Apr 14, 2025

WordPress Version:

3.9 or higher

Tested up to:

6.8.1

Features Download’s trend Changelog Reviews

Enhanced WordPress Security

Install the SiteGuard WP Plugin for improved security against brute force attacks and login management.

Protects Against Login Attacks

Prevent unauthorized access with functions like IP filtering, login page renaming, and CAPTCHA.

Automated Attack Prevention

Locks IP addresses with multiple login failures, while sending login alerts for unauthorized access.

Stay Updated and Secure

Receive notifications for WordPress core, plugin, and theme updates to ensure the latest security measures are in place.

Author’s Site

1.7.8

Fix a warning that occurred from ver1.7.7

1.7.7

Fix a bug where renamed login URL was leaked when wp-register.php was accessed

1.7.6

Fix a problem that a warning occurred on the Login screen in the PHP8.x environment

1.7.5

Fix a problem that a serious error occurred on the Updates Notify screen in the PHP8.x environment

1.7.4

Changed the directory to store CAPTCHA image files to wp-content/siteguard/
Fix some bugs

1.7.3

Fix an issue where password reset could not be sent from the management page when CAPTCHA was enabled

1.7.2

Reviewed and modified source code related to security

1.7.1

Fix the problem that a syntax error occurs in PHP5.6 or earlier

1.7.0

Removed ability to get client IP address from X-Forwarded-For due to IP spoofing risk

1.6.1

Fix the problem that an error occurs when suppressing the redirect from the management page to the login page

1.6.0

Add the “Block Author Query” feature

1.5.2

Fix a syntax error before php5.4

1.5.1

Fix a server error when mod_access_compat is not loaded in apache2.4
In the Admin Page IP Filter function, fix an issue where site health loopback requests fail

1.5.0

Add the function not to redirect from admin page to login page
Add site-health.php to the initial value of the exclusion path

1.4.3

Fix bug in 1.4.2 “Notice：Use of undefined constant HTTPS”

1.4.2

In the Rename Login function, correct the problem that is redirected to the https renamed login page from the http /wp-login.php

1.4.1

Fix bug that some functions are disabled

1.4.0

Enabled to get client IP address from X-Forwarded-For header
Strict operation check of each function
Change not to use session

1.3.4

Fix an issue where CAPTCHA might fail in 1.3.3

1.3.3

Fix bug that fatal error occurs when fails to send mail
Inprove the security of the CAPTCHA function
Disabling the Rename Login function when qTranslate X plugin is enabled in order to avoid conflicts

1.3.2

Fix bug that fatal error occurs when fails to send mail

1.3.1

Fix conflicts with other plugins in a session related

1.3.0

Add the “Disable XMLRPC” feature
In the Login History, add display the login type that indicates whether via login page or xmlrpc
Fix that the Fail Once error message to be not the same as the failure
Fix that the permission of .htaccess to change from 0644 to 0604
Delete the mistaken characters of CAPTCHA

1.2.5

In the Admin Page IP Filter function, fix bug that can be accessed from the IP address that failed to login to the management page
In the Rename Login function, correct the problem that is redirected to the renamed login page from the /wp-signup.php

1.2.4

Fix bug that there is a case which can acccess management pages from non login client
Disabling the several functions when there is no .htaccess write permission

1.2.3

Fix bug that you can not reply comments from the dashboard, if the CAPTCHA is enabled
Fix bug that the login page is displayed in ‘/wp-login’ even if the Rename Login is enabled

1.2.2

Fix bug that XML-RPC access which doesn’t need login is recorded as the nameless login history
Disabling the all functions when installed in multisite environment
Disabling the several functions when settings of .htaccess was eliminated

1.2.1

Supported with WP 4.2

1.2.0

Add the “Updates Notify” feature
Fix bug that login via XML-RPC to fail, if the CAPTCHA is enabled
Fix bug that sometimes can’t login when you enable the Fail once

1.1.2

Supported with WP 4.1
Disabling the Admin IP Filter function by default

1.1.1

Fix bug that can not save “Login Alert” settings
Add the “Login Alert” notification variables, IP Address, User-Agent and Referer

1.1.0

Add the “Login Alert” feature
Add the function of inform the new Login page URL by e-mail
Fix bug that work “Fail Once” even when the password is a mistake
Fix bug that even if the “Rename Login” has been enabled, and have specified a permanent link to the non-standard, jump to the new login page in /login

1.0.6

Supported with Apache 1.3
Fix garbling of CAPTCHA by environment
Fix input check of Rename login path
Fix some other bugs

1.0.5

Add display a warning about changing the login page URL, when activate the plugin

1.0.4

Fix bug that fails to update .htaccess, if there is no WordPress settings in .htaccess

1.0.3

Fix a problem that “Rename Login” does not work, if you change Permalink settings
Fix the collision of class name of Really Simple CAPTCHA

1.0.2

Fix a minor html escape leakage
Reduced the problem of affinity with other plugin [WordPress HTTPS (SSL)]

1.0.1

Supported with WP 4.0

1.0.0

First release

Unsafe

By alexbrowp on November 27, 2024

When you log out, the session is not closed and you can still go to wp-admin. Also, redirecting wp-admin to the custom login page doesn't help with security

.

By wpuserjp202306t on July 27, 2023

ログイン保護に利用しています

By Fumiki Takahashi (Takahashi_Fumiki) on June 23, 2023

誰でもユーザーを登録できるサイトを作っているのですが、ログイン保護機能を利用しています。スパムアカウントが減りました。

解決済/ループバックリクエストでの問題(サイトヘルス)

By tsutlnps149 on February 6, 2021

管理ページアクセス制限を有効にすると、サイトヘルスで「サイトでループバックリクエストが完了できませんでした」という文字が出るが、この問題、site-health.phpを除外設定にしてもなお出続ける。制限をOFFにすると、出なくなる。バージョン「1.5.1」でのアップデートで、この問題は解決したようです。ありがとうございました。

Multisite is not supported

By T. Sagawa (tscontenna) on September 15, 2020

Nothing work in multi-site mode.

Good Support

By lw53 on August 31, 2020

All the features I require with easy to follow instructions of how to correctly set-up.

Very effective tool

By vaclavek on June 7, 2020

Very effective tool with simple and flexible interface.

ログインしていない状態で/wp-admin/にアクセスするとurl変更したログイン画面にリダイレクトされてしまう

By Anonymous User 16694661 (anonymized_16694661) on December 12, 2018

ワードプレスのデフォルトの仕様だと思いますが、/wp-admin/にアクセスするとプラグインで変更したログイン画面のurlヘリダイレクトされてしまいますのでこちらの改善もお願いいたします。例） example.co.jp/wp-admin ↓　リダイレクト example.co.jp/プラグインで設定したログイン画面のURL文字列個人的には下記のコードで対処しています。


add_action('init', 'remove_default_redirect');
add_filter('auth_redirect_scheme', 'stop_redirect', 9999);

function stop_redirect($scheme)
{
    if ( $user_id = wp_validate_auth_cookie( '',  $scheme) ) {
        return $scheme;
    }

    global $wp_query;
    $wp_query->set_404();
    get_template_part( 404 );
    exit();
}

よろしくお願いいたします。

Great tool, simple yet powerful.

By unostar on October 29, 2017

Like the simplicity and efficiency of the plugin. One thing I would really like to change is CAPTCHA. C'mon guys, haven't you seen Google's reCAPTCHA? It's way much better, imo.

大変良いプラグインです

By Tomo (tomoygt6) on September 29, 2017

ログインページの変更するなどの機能の他、不正にログインしようとしてきた履歴を見れるなど、一通りのセキュリティを提供してくれる良いプラグインです。

More Reviews

Try other plugins too!

Safe Ai Malware Protection for WP

Secure Your WordPress Site with Cutting-Edge Protection

Try Demo More Details

Malware Scanner

Malware scanner provides Anti malware security, Scans & Detects malware like Trojans, Backdoors, Brute force & OWASP attacks.

Try Demo More Details

The GDPR Framework By Data443

Easy to use tools to help make your website GDPR-compliant. Fully documented, extendable and developer-friendly. Extensions to enterprise GDPR compli …

Try Demo More Details

Screenshots

Author Site

SiteGuard WP Plugin

Enhanced WordPress Security

Install the SiteGuard WP Plugin for improved security against brute force attacks and login management.

Protects Against Login Attacks

Prevent unauthorized access with functions like IP filtering, login page renaming, and CAPTCHA.

Automated Attack Prevention

Locks IP addresses with multiple login failures, while sending login alerts for unauthorized access.

Stay Updated and Secure

Receive notifications for WordPress core, plugin, and theme updates to ensure the latest security measures are in place.

1.7.8

1.7.7

1.7.6

1.7.5

1.7.4

1.7.3

1.7.2

1.7.1

1.7.0

1.6.1

1.6.0

1.5.2

1.5.1

1.5.0

1.4.3

1.4.2

1.4.1

1.4.0

1.3.4

1.3.3

1.3.2

1.3.1

1.3.0

1.2.5

1.2.4

1.2.3

1.2.2

1.2.1

1.2.0

1.1.2

1.1.1

1.1.0

1.0.6

1.0.5

1.0.4

1.0.3

1.0.2

1.0.1

1.0.0

Unsafe

.

ログイン保護に利用しています

解決済/ループバックリクエストでの問題(サイトヘルス)

Multisite is not supported

Good Support

Very effective tool

ログインしていない状態で/wp-admin/にアクセスするとurl変更したログイン画面にリダイレクトされてしまう

Great tool, simple yet powerful.

大変良いプラグインです

Try other plugins too!

Safe Ai Malware Protection for WP

Secure Your WordPress Site with Cutting-Edge Protection

Malware Scanner

Malware scanner provides Anti malware security, Scans & Detects malware like Trojans, Backdoors, Brute force & OWASP attacks.

The GDPR Framework By Data443

Easy to use tools to help make your website GDPR-compliant. Fully documented, extendable and developer-friendly. Extensions to enterprise GDPR compli …

Screenshots

Try SiteGuard WP Plugin With InstaWP

Contact Sales