NinjaFirewall: Advanced Security Plugin and Firewall For WordPress
Looking for an Advanced Security and Firewall plugin for your WordPress site?
NinjaFirewall (WP Edition) is a sophisticated and lightweight Web Application Firewall that can block threats even before they reach your blog. Because WordPress installs it before its plugins and themes, it offers unique security features not found in other plugins.
It provides a very strong level of security to WordPress with over 280 security rules, dozens of firewall policies, and a powerful filtering engine that can detect advanced Web Application Firewall evasion techniques used by hackers.
NinjaFirewall brute-force attack detection system is the fastest for WordPress. It can add a password protection or a captcha to the login page without installing the blog, which allows to easily block any brute force attacks against WordPress, including distributed attacks. It can write the perpetrator’s IP address to the Syslog server to work with other third-party applications that can interact with the Linux kernel firewall, such as fail2ban.
The firewall filtering engine includes many security rules that are used to prevent most known vulnerabilities from being exploited; also known as “0day”, specific rules used to block generic threats (eg SQL injection, cross-site scripting, remote code execution, etc.) and heuristic, among others, an administrator-level privilege escalation attempt or PHP object insertion It is a detection engine that detects and rejects vulnerabilities. Security rules can be updated automatically every hour to ensure the blog is protected against the latest threats.
In addition to rejecting and blocking hacking attempts, it can disinfect incoming data on the fly so that suspicious input can be cleaned up before it can be safely re-injected into the HTTP request. HTTP headers, including cookies, can be manipulated for better security.
NinjaFirewall includes a real-time detection engine, file integrity monitoring scanner and an anti-malware using popular Linux Malware Detection (Maldet) signatures, and is also compatible with ClamAV signatures to some extent.
Events such as installing or disabling plugins and themes, login attempts, administrator account changes are immediately reported to the blog administrator.
Note: NinjaFirewall only works on Unix-like OS (eg Linux, *BSD); It is not compatible with Microsoft Windows servers.
- Powerful filtering engine with multi-encoding support
- Detects and blocks WAF avoidance techniques
- Disinfects variable name and value
- Broad set of firewall policies
- Hourly security rules updates
- Hardening HTTP headers and cookies
- Brute force attack protection
- real-time detection
- File integrity monitoring
- event notification
- Multi-site support
- IPv4 / IPv6 compatibility
- Activity log and statistics
Blocks all major threats
- Cross-Site Scripting (XSS)
- Local & Remote File Inclusion (LFI, RFI)
- Insecure Deserialization
- SQL Injection (SQLi)
- PHP object injection
- Remote Code Execution (RCE)
- XML External Entity (XXE)
- OWASP Top 10
Large set of options
- 50+ firewall policies
- 130+ security rules
- Access Control
- Syslog Logging/Fail2Ban
- IPv4, IPv6 & AS number
- And many more…
Powerful filtering engine
- High Performance Firewall
- Low CPU/RAM usage
- Fast & compact
- No database required