WP Cerber Review
Professional grade WordPress security plugin
Overview
WP Cerber is a professional grade anti-spam plugin that protects users from brute force attacks by simply limiting the number of login attempts through the login form, XML-RPC requests and auth cookies. It also restricts access with Black IP Access list and White IP Access list. They also have a re-captcha to protect registration from spam registrations. It also tracks user, bot and hacker activity and hardens WordPress.
Benefits
- Restricts access to XML-RPC, REST API and feeds with White Access list with IP or subnet
- Stop user enumeration by blocking access to certain pages.
- Block proactively IP subnet class C for an intruder’s IP.
- It has an effective re-captcha to protect login/register/lost password forms
- It has a citadel mode for massive brute force attacks
- It also maintains an effective database and writes failed attempts down on sys logs or custom log files.
- Inspect and filter out activities list by IP, username or particular eventand handle site or server behind revere proxy
- Optional admin notifications and trigger and action for the JetFlow Automation plugin
Pricing
Price: $99/ year
Pricing model: Subscription model
Single
$99 /year- 1 Website
- Cerber Security Cloud Protection
- Layered spam protection
- Automated malware scans
- Automated integrity checks
- Rich GEO access rules
- Professional support
- 30-Day Money Back Guarantee
5 Value Pack
$399 /year- 5 Website
- Cerber Security Cloud Protection
- Layered spam protection
- Automated malware scans
- Automated integrity checks
- Rich GEO access rules
- Professional support
- 30-Day Money Back Guarantee
- Developer Support
Free Trial: Free version available.
Pro’s & Con’s
- Limits login attempts while logging in by IP addresses or entire subnet.
- It also monitors the logins made by login forms, XML-RPC requests or auth cookies
- Lets you create a custom login URL
- Hide options for wp-admin, wp-login, wp-signup, wp-register from possible attacks and return 404 HTTP error if the user hasn’t logged in
- Immediately block IP or subnet if a user tries to login with wrong or non-existant username
- Log all activities related to logging in/out process
- Options to disable WP REST API, XML-RPC , feeds like RSS, Atom and RDF.
- Disable automatic redirecting to login page
- Options to hide WordPress dashboard
- Switches to citadel mode immediately after installation
- If display of 404 error is opted, only HTML is reproduced without the CSS
Competitors Plugins
Summary/Conclusion
By default WordPress allows unlimited login attempts either through the login form or by sending special cookies. This allows passwords to be cracked with relative ease via brute force attack. WP Cerber blocks intruders by IP or subnet from making further attempts after a specified limit on retries is reached, making brute force attacks or distributed brute force attacks from botnet impossible. You will be able to create a Black Access List or White Access List to block or allow logins from particular IP. Moreover, you can create your custom login page and forget about automatic attacks to the default wp-login.php, which takes your attention and consumes a lot of server resources. If an attacker tries to access wp-login.php they will get a 404 Error response.
Main Features
- Automatic detection of bots, robots and hackers
- Citadel mode for massive brute force attacks
- Configurable email notifications with rate limiting
- Proactively block IP subnet class C for a suspicious IP address
- Create a Black Access or White Access list for blocking or allowing certain IP addresses
- Limit login attempts when logging in by IP address or subnet class
- Hide dashboard with wp-admin, wp-login, wp-register from users to produce a 404 error
- Re-captcha for WordPress and WooCommerce forms
Bundled Programs
- Anti-spam plugin – template
There are no reviews yet.