Sorry, we don't support your browser.
Install a modern browser
Shield Security for WordPress
Let us know what security features you want to see in
Make a suggestion
Integrate Shield Security management within MainWP to allow bulk management of the Shield plugin from inside the MainWP Dashboard.
Add 2FA support for "Store Vendor" user type for Woo/WCFM based B2B sites
Started out trying your 2FA Email Authentication, but quickly found out that Store Vendor user type is not supported. I have a woocommerce/WCFM based B2B website, so the majority of users are Store Vendors. It would be good to add Store Vendor as
Add spam protection for forms, including Contact Form 7
Ability to add spam protection for forms, including Contact Form 7. Without it, I still need to run Akismet which conflicts with Shield and forces me to disable the Spam protection module in Shield. It would be great if we could use Shield protectio
Site Integrity Monitoring
Attempt to track changes to certain site properties that have occurred outside of the normal WordPress workflow. e.g. when a user's password is changed on the DB, but this has not passed through the standard WordPress flow of user password change.
Complete File System Monitoring
A bit like the Plugins/Themes guard, where Shield tracks changes to their PHP files, a further option is to build full file-system monitoring service to track all new files and changes across the entire site.
Removed plugins feature
To have a feature that notifies us if a plugin is removed from the WordPress repository.
Search box for Audit Trail
One case when I needed the search box was when I got a strange log on the server, with one IP. I went to the audit and I had to scroll through hundreds of IP to find the one I am looking for. Instead, a search box, paste and click and done. For
Scan results page improvements
1) Add ability to bulk delete files (screenshot attached) For example, a way of ticking all the malware files and having them deleted all at once. 2) It’d be nice to be able to sort files by the file path. (I was deleting files using File Manager
Check if the plugins you are using are prone to vulnerabilities or not
It would be awesome if you could check somehow if the plugins you are using are prone to vulnerabilities or not. Perhaps Shield could add the number of vulnerabilities that occurred to each plugin in the past somewhere in the plugin overview with
Receive an email when something went wrong with an automated update
I really like the automatic update features, however, would it be possible to add the option to only receive an email when something went wrong with an automated update? (I like having automated updates but I still want to have some kind of control
Referrer line in traffic log
Add a line for the referrer so there is a way to determine where the entry in the traffic log came from. I.e. was it a direct access or was it coming from another page link. Screenshot: https://share.getcloudapp.com/X6uzgrw6
Login Guard: Enable the Bot Protection for login forms separately
Especially when using woocommerce it would be perfect if one could enable the Bruteforce Protection separately - exclusively for the Site-Dashboard-Backend Login Form. At the moment one can only enable the brute force protection for all Login Forms
iControlWP - Shield warning email: Add the domain name to the subject title
iControlWP - Shield warning email: Shield Warning: Vulnerabilities found on your WP site I have many emails in my inbox all with the same title: "Shield Warning: Vulnerabilities found on your WP site" and I have to take the time to open the email t
Blacklist subnets, not just individual addresses
I suggest feature that blacklists whole subnets. Some aggressive sites have been scanning my site long time. They hop from one IP address to another within a small range. Watching their pattern they stay usually within same 8..10 bits subnet in IPv4
The ability to whitelist users based on a specific role or capability
Can you add the ability to whitelist users based on a specific role or capability? Currently the only option is to whitelist the site’s admin, but we would also like to whitelist say an editor or other users who have certain credentials. Or if it
Make a suggestion