Category Archives for "Plugin Reviews"

10 Best WooCommerce Plugins for Your Ecommerce Store

So, you have started an e-commerce store on WooCommerce and have a great product to sell.

Despite having a great product, you still might be facing difficulty in generating higher sales. That’s because whether your e-commerce store becomes a sales conversion machine or not depends upon many factors such as

  • How easy is the entire checkout process for your customer
  • How easy is it for your customer to make payment
  • How are you attracting customers into your sales funnel
  • How fast does your e-commerce website load

and much more.

This is where the most successful online stores that have been built on WooCommerce take advantage by integrating WooCommerce plugins to better manage their online store and in turn increase their sales.

In this article, I am going to share 10 of the best WooCommerce plugins that are available in the market today to help improve your online store’s performance, increase sales, and give full control over it.

#1. WooCommerce Stripe Payment Gateway

The WooCommerce Stripe Payment Gateway plugin helps you to accept payments directly on your store instead of redirecting the user to a third party payments page like in case of PayPal. I love this plugin as it helps to increase the conversion rate of your online store as customers no longer have to be diverted to an external page just to make payments.

With Stripe you can accept all major debit and credit cards from your customer. Besides, the customer can can add a credit/debit card on the checkout page itself which also improves the conversion rate.

Stripe for WooCommerce is available free of cost. For transactions though, the fee is 2.9% per transaction plus + 30¢ per successful transaction as long as you’re doing under $1 million in volume per year. This fee is same as the one PayPal charges.

And your earnings are transferred to your bank account every 7 days.

Once you install and activate the plugin, navigate to WooCommerce >> Settings >> Checkout >> Stripe to configure the plugin.

You just have to enter Publishable Key and Secret Key which will be available to you once you create you Stripe Account. Once you do that your account will be connected to Stripe Account and you can receive the payments from your E-Commerce Store

#2. Imagify Image Optimizer

If you have an e-commerce store chances are that you will be using lot of high quality images for showcasing your products and the problem with using high quality images is that it takes lot of time to load, affecting your SEO.

You don’t want your SEO to get affected, do you ?

Imagify Image Optimizer is the solution to the above problem which helps in speeding up your e-commerce store by

  • Compressing all your existing images which are in JPG, PNG, GIF format and reducing its size.
  • Compressing any image you add to your wordpress website on the go, saving you lot of time from resizing it later.

Imagify plugin is available both as free and paid versions. Free version lets you compress up to 25MB of images per month. Paid version starts from $4.99 per month and the price varies based on the total size of the images that you can compress.

If you are going for a paid version I would highly recommend the ‘Lite version’ which lets you compress 1GB of images per month.

Once you install and activate the plugin, go to Settings >> Imagify to navigate to the dashboard as shown below. If you are using this plugin for the first time then, in the setting page of the plugin just select ‘Aggressive’ option and select ‘Imagify Bulk Optimization’ link present at the footer.

You will then be navigated to a different page where list of images that have been optimized are shown to you. Next you can select ‘Imagif’em all’ button, as seen below, to optimize all the images. Depending on the number of images present in your site it might take anywhere between 30 to 90 minutes to optimize all the images.

You may also like to read – Best WordPress Membership Plugins

#3. WooCommerce Checkout Manager

WooCommerce Checkout Manager plugin helps you to customize the default checkout page provided by WooCommerce.

Take the case of managing the fields on checkout page – if you want to add an additional field or if you want to remove an existing field like Last Name without touching the code you can easily do so with this plugin .

The WooCommerce Checkout Manager plugin also has other great benefits to offer such as

  • You can make any fields in your checkout page as Optional.
  • Customer details entered in the checkout page can be retained when they navigate back and forth from checkout page.
  • Add additional fields to the Billing and Shipping sections.
  • Customer CSS option to style the fields.
  • Add Conditional Checkout fields.
  • Add Custom Notice Message before customer address fields and order summary.

Once you install and activate this plugin in your WordPress, just select ‘WooCheckout’ menu option to navigate to the dashboard.

There will be four tabs named General, Billing, Shipping and Addition. If you want to make any changes to Billings section in checkout page just select Billing tab. Now all the fields present in the Billing section will be displayed. For example, if I have to remove Company name and Country field just select the last checkbox as show in the above image and click on Save changes.

After making the changes, Company Name and Country text fields are no longer present in the checkout page as seen below.

#4. Breeze by Cloudways

A fast loading website not only leads to higher sales conversions but also is a must for good SEO. If you want your Woocommerce Store to be fast and at the same time you can’t afford a fancy plugin to speed up your site then, Breeze plugin is your best option.

Not only is the Breeze plugin free but also very easy to set up. And it optimizes your website performance through

  • Internal Cache to your WordPress website
  • Minification of your HTML, CSS, JS files
  • Database Optimization
  • Gzip compress to make HTTP request fewer and faster
  • Helps you to integrate with CDN

Once you install and activate the plugin, to configure the plugin just navigate to Settings >> Breeze

The best part about this plugin is that you need not make any drastic changes to Settings as most of the default options selected do a good job in optimizing your website instantaneously.

Take a look at my screenshot below where I could instantaneously decrease the load time of my website from 4.23 sec to 1.96 sec. I just installed and activated the plugin, I didn’t have to do anything else and the results are there to see.

#5. WooCommerce Direct Checkout

No one enjoys a lengthy checkout process and it has a direct bearing on your e-commerce sales.

Reducing the time it takes for the user to complete the purchase helps you to increase your sales. WooCommerce Direct Checkout is one such plugin that helps in this regard by enabling the user to navigate to Checkout page directly after adding the product.

This plugin enables you to add a ‘Buy Now’ button in the product page itself and when the user clicks on this buy now button user is immediately directed to Checkout page instead of Cart page.

This plugin is available both as free and paid versions. The difference being the paid version i.e the PRO version helps you to add additional buttons in Product page.

Once you install and activate the plugin in your WordPress site just go to WooCommerce >> Direct Checkout to navigate to the Dashboard.

You can see from the below screenshot that the Dashboard is very simple and straightforward. You can

  • Enable or disable the functionality of the plugin
  • Add your custom “Add to cart” text
  • Add “Continue Shopping” button

I changed the Custom “Add to cart” text to “Buy Now” and saved it. You can see from the below screenshot where “Buy Now” button is displayed in the product page and when user clicks on Buy Now button he is taken directly to checkout page

#6. WooCommerce PDF Invoices & Packing Slips

This is the one of the best plugins to create invoices and packing slips in PDF format for your e-commerce store. This plugin has been installed more than 100,000 times and has got some great reviews.

This plugin helps you to add PDF invoice to the order confirmation email that you send out to customer and also lets the customer to download the PDF invoice by accessing his account in your website. This plugin has other great features such as

  • You can download PDF invoice for all the orders from Order Admin page plus you have the option to generate PDF invoices in bulk.
  • Admin can provide his own sequential invoice numbers for the invoice.
  • You create invoice with more stylish templates.
  • Helps you to send invoices and packing slips automatically to your printer as soon the customer orders from your website.

Once you install and activate the plugin you can navigate to WooCommerce >> PDF invoices to configure your PDF invoice.

The options are straightforward and you can configure it on your own without much trouble. However, the only thing that I would advise you to do is to navigate to the documents tab where you would find list of options where you can attach your PDF invoices.

Make sure you select appropriate checkbox as shown below

Also, you can see from the below screenshot that after configuring the plugin, I logged into my account and navigated to order page where I could see “Download Invoice” plugin which lets the user to download the invoice.

You can see my download invoice here and basic template provided for the PDF format looks neat and clean

#7. WooCommerce Currency Switcher

Due to rise of internet and online shopping, consumers around the world are looking for more choices and are not hesitating to shop for things that they might not find within their native countries.

Currency Switcher plugin helps you to take advantage of this phenomena by catering to international customers by facilitating switching of currency and displaying visitor’s local currency based on their IP address.

This way you can attract many online shoppers to your store as allowing them to view your products in their local currency will make them feel at home as they don’t have to calculate the product’s cost in their local currency .

Some of the other benefits of using this plugin are

  • This plugin is compatible with Stripe payment gateway, PayPal payment gateway, and most of the other gateways if user chooses to checkout with different currency.
  • This plugin is also compatible with WooCommerce PDF & Packaging slips plugin.
  • You can configure a minimum amount for free delivery and a minimum amount for shipping for each currency that you have created.
  • This plugin provides you with 3 widgets namely currency switcher, currency converter, and currencies rate which you can add in your category page.

This plugin comes in free and paid version. The difference being that free version lets you create only 2 currencies and premium version lets you create unlimited currency.

After activating the plugin in your WordPress site just navigate to WooCommerce settings page and select Currency tab to navigate to the dashboard where you can add different type of currencies.

#8. Checkout Address Autocomplete for WooCommerce

This is another cool plugin to speed up the checkout process. What this plugin does is whenever your customer enters his address in the checkout page, the plugin will make use of Google location(places) to populate potential address.

Upon selecting one of the suggested addresses it will autocomplete the address fields in the checkout page. The main benefits of this plugin are

  • Saves time for customer in checkout process
  • Reduces cart abandonment by speeding up the checkout process
  • Helps reduce typing errors when customer enters an address avoiding wrong delivery of the product

After activating the plugin in your WordPress site go to Settings >> Checkout Address AutoComplete. In the Dashboard you just have to enter your Google Maps JavaScript API key and you are good to go.

As you can see from the below screenshot, in the checkout page when I entered address I could see the address suggestion dropdown with probable addresses.

#9. Pricing deals for WooCommerce

Discounts and Offers are great way to attract customers, bring them into your sales funnel, and make more sales. Pricing Deals for WooCommerce is a powerful plugin through which you can create both dynamic cart pricing discounts and catalog price(wholesale) discounts.

Some of the types of discounts that you can create are

  • Buy one get one free deals
  • Discount for bulk purchase
  • Discount when you spend a certain amount (for example when a customer spends $ 250 they would get $ 50 discount)
  • Create percentage and package pricing discount
  • Using short codes helps you to display the deals on your website

Once you install and activate the plugin in your WordPress site you can select “Pricing Deal Rules” from the left menu to navigate to the dashboard as shown in the below screenshot. I would also advise you to follow this tutorial if you are creating promotion for the first time as it can be difficult to configure at times.

#10. Order Delivery Date for WooCommerce

This plugin gives the customer the ability to set the delivery date on the Checkout page. This plugin is very useful for people who are in chocolate, cake, or brewing industries where it is important to deliver the products at the right time.

Some of the other features of this plugin are

  • As an admin you can disable the days on which you don’t deliver your product
  • You can disable delivery date for certain products
  • You can configure delivery date fields as per your business
  • You can make the delivery date field as mandatory in the checkout page
  • PRO version allows the customers to select delivery date and time

Once you install and activate the plugin, you can select “Order Delivery date” option from the left menu to navigate to the dashboard. Here you can configure the delivery dates to when you are open, change appearance of the delivery date field in checkout to a different theme, and disable the delivery date field for virtual product without much difficulty.

You can see the delivery date option displayed in the checkout page after configuring the plugin


The above list of WooCommerce plugins will definitely help to increase the sales as well as the performance of your e-commerce store. There were other good plugins too but they missed the cut because

  • They didn’t work properly after installing
  • They have not been updated since many years and hence we couldn’t use them
  • There was no free version available for that plugin

If you know of any other awesome WooCommerce Plugins do let us know in the comments.


Best WordPress Membership Plugins of 2017

I have researched a lot about top Wordpress membership plugins because I wanted to create a private community, online courses and a website with exclusive content for my readers. 

Actually, I wanted to monetise my website like and I was looking for the combination of WordPress + Membership Plugin. 

The common issues before finalising a WordPress membership are - 

  • question-circle
    Should I take a paid or a free version
  • question-circle
    Should I take the recurring one or the fixed price one
  • question-circle
    What are the options with the minimum cost

So, here’s what I did - I actually went through 50+ articles on WordPress paid subscription plugins, made an excel sheet and researched every single one of them.

Yep, that’s right. I am going to share the Pros and Cons of each plugin based on my research. 

By the way, membership plugins can be used in many different ways. 

  • check
    Restrict certain content – your blog articles, or reports, or an ebook, or a cheat sheet
  • check
    Give access only to some selected readers/subscribers on your blog
  • check
    Make one time or recurring payments
  • check
    Allow selected content to download
  • check
    Drip content over time through emails
  • check
    Create one or multiple products
  • check
    Offer discount coupons

In fact, one of the most profitable monetization strategies for your blog is to create membership programs.

For Example

One time or Recurring membership (subscription) plugin

This is an important consideration while deciding on your plugin. Here’s how you can think through it

  • If your offering 1 or 2 products, you might purchase a plugin with a onetime cost.
  • Buy recurring membership plugin, If you have multiple products, hundreds of customers, complex customisation, many pricing and checkout pages.

What to look for in a WordPress membership plugin

Some of the key factors to consider when choosing a membership plugin

  • Payment gateway support
  • Recurring payment support
  • Ability to drip and protect content
  • Send email notifications to subscribers
  • Creating membership levels
  • Support provided
  • Ease of use

List of Features you get with a membership plugin

  • Automated membership system
  • Content protection
  • Easy member management
  • Download protection
  • Payment gateways integration (E.g. PayPal)
  • Autoresponder integration (E.g. Mailchimp, Drip, Aweber)
  • Set up and design

6 Best Paid WordPress Membership Plugins

Although there are many free plugins that can do the job for you as discussed above, there are some premium plugins that are worth the price tag attached to them.

As your business needs change you might want to consider using these premium membership plugins to access more functionalities and gain more control over your content.

#1. MemberPress Membership Plugin Review

This is hands down the most powerful among the paid plugins out there.

Memberpress membership plugin review

You need to have only three pages on your website – login page, account page and thank you page. The makers have made it as easy for you and give you the option to create those pages with a touch of a button.

Apart from integrating with regular gateways like PayPal, Stripe,, it also gives you the ability to work with offline payments which are managed by site admin.

Also, you get many types of notification like

  1. Welcome email for new members
  2. Failed transaction notice
  3. Payment receipt notice
  4. Credit card expiring notice

MemberPress can easily be integrated with popular email marketing providers.

Here is the link to get MemberPress


  • Affiliate program and tracking
  • Drip content
  • Easy to set up
  • Access rules are defined by you
  • Simple payment gateway integration
  • Create dynamic pricing pages
  • Dashboard reports and stats


  • Supports only 3 payment gateways - Stripe, PayPal, and

#2. Restrict Content Pro WordPress Membership 

Restrict Content Pro is developed by the master WordPress plugin developer Pippin Williamson. That means you'll get the best documentation and the support for the product.

Restrict Content Pro

This is one plugin which is quick to set up and doesn’t come up with the fancy bells and whistles you don’t necessarily need.

You can..

  • Create magazine website
  • Option to make your content private or public

It's easy to manage members and create reports.

You can create unlimited membership levels, tiered memberships, upgrades, downgrades, renewals, add a signup fee (if you need) and discount coupons.

A perfect fit for your if your requirements are

  • Restrict past content
  • Restrict timeout
  • Create group accounts

Here is the link to  purchase Restrict Content Pro

In terms of pricing, you have 4 options to choose from

  1. Ultimate ($499 one time)
  2. Professional ($249 per year)
  3. Plus ($149 per year)
  4. Personal ($99 per year)


  • Easy Setup and Navigation
  • Great Support
  • Integration with Stripe and Mailchimp
  • Good Reporting Tools
  • Unlimited Subscription Levels
  • Fixed and Variable Discounts
  • Ability to send customised Emails


  • No way to add multiple restriction on pages and posts
  • Some features are accessible only through add ons
  • No Drip Content

#3. MemberMouse WordPress Membership Plugin

The primary focus of this plugin is membership management, so you get options like - managing documents, conduct member polls, online surveys, collect donations, fees, customize accounting, allow discounts to premium members.

Member mouse plugin review


  • One click upsells and downsells

  • Customer management

  • Automated customer support

  • Content protection

  • Completely customizable checkout process

  • Time released drip content

  • Employee accounts

  • International currencies

  • Gifting options

  • Custom user fields

  • Scalability with unlimited members and reporting


  • No integrations for CRMs like Ontraport, ActiveCampaign, etc.

  • No shipping option in case you’re selling physical products

  • No file protection

  • No GPL so you can’t customize the source code

  • One purchase is for one site use only

Here is the link to obtain the license of Member Mouse.

In terms of pricing, you have 3 options to choose from

  1. Starter (for 1000 members, $19.95/ month)

  2. Advanced (50000 members, $99/ month)

  3. Premium (100,000 members $299/month)

#4. WooCommerce WordPress Membership Plugin

WooCommerce allows you to turn your WordPress site into an e-commerce store extremely easily to sell anything from digital to physical products.

woocommere memberships

WooCommerce is the is the right option for you if you have an e-commerce store selling multiple products. 


  • Ability to create membership plans

  • Content restriction

  • Drip feed

  • Ability to restrict other products

  • Discounts for selected members only

  • Create coupons

  • Show related products

  • Link to different membership plans

  • One time signup fee and recurring payments option

  • Upgrade and Downgrade

  • Allow members to pause their accounts

  • Synchronize payments on a certain day


  • No ability to add members to an email list

  • You can’t redirect members to a specific page

  • No option to set a recurring payment

  • Limited integration for advanced email marketing providers like ConvertKit and ActiveCampaign

Here is the link to review and purchase Woo Commerce plugin

If you’re offering a lot of products and you want only your exclusive members to buy, this is a great option.

As far as pricing goes, it comes in 3 options

  1. Single site ($149)

  2. 5 sites ($199)

  3. 25 sites ($249)

#5. Wishlist WordPress Membership Plugin

Wishlist gives you great control like how your membership site will function, how your content is protected, or how access is granted to your customers.

Wishlist membership plugin

One of its key features is Sequential Upgrade, which allows you to automatically move members to various levels.


  • Unlimited membership levels and members
  • Free, trial or paid membership
  • Also supports Pay per Post option
  • Sneak peek content
  • Create secure RSS feed
  • Members can be part of multiple memberships at once
  • Drip content
  • Different error pages for non-members
  • Wrong membership levels and cancellations
  • Email broadcast
  • Content protection
  • Drip feed
  • Payment integrations


  • Does not allow you to generate coupon codes
  • No ability to schedule emails automatically for renewal, expiry, etc.
  • Ease of use is slightly difficult compared to other membership plugins since there are a lot of settings involved and configured
  • Sequential Upgrade can be confusing to people who are used to drip feeding
  • Does not create a separate account page where members can manage their own account

Here is the link to purchase Wishlist

In terms of pricing, you have 2 options to choose from

  • $197 for single site
  • $297 for multi-site

#6. Magic Members WordPress Membership Plugin

One of the main concerns with a membership site is content protection and Magic Members does a great job in addressing this in a variety of ways.

Magic members plugin

It's easy to maintain a large content section, while keeping complete privacy for the member’s area.


  • Pay per post or a page
  • Simple forums integration
  • Drip feed / RSS feed
  • Coupon codes creation super easy
  • Multiple memberships
  • Integration with Mailchimp and Infusionsoft
  • Flexible membership options
  • Control membership length
  • Payment integrations with PayPal, 2Checkout, Clickbank, and more
  • Import and Export users
  • Full blog protection


  • User interface isn’t impressive as compared to others
  • No built in affiliate management system
  • Although integration with email marketing providers is supported, there is no built in autoresponder system

Link to get Magic Members plugin

In terms of pricing, it is available in 3 options

  1. Single site ($97 one time)
  2. Three sites ($197 one time)
  3. Unlimited site ($207 one time)

Final thoughts - Which Membership Plugin is best for your WordPress website

Like I mentioned above, there are almost 40+ membership plugins available. There is no one-size-fits-all when you have plenty of options. I have narrowed it down to the best ones in this article.

Which one should you select will largely matter on what is your criteria.

That means it will depend on what you use your site for.

  • Are you selling multiple online courses? Or just want to protect certain portion of your website content then GO for MemberPress without any doubt. 
  • Is it an e-commerce store selling physical products? WooCommerce would be the best option for you

I will update the article after a few weeks after hearing your thoughts in the comments. Let me know if you need any more clarification about the membership plugins.


10 Best WordPress Security Plugin – Review 2017

I never worried about the security of my website in the initial days of my blogging business.

No one hacked my website, neither I had any virus or malware attacks.

But that does not mean that I did the right thing. I escaped from the hackers because of my luck but that's not how online businesses are run. 

I was very careless about maintaining my website.

Often a times my website became slow or unresponsive because I hosted my website with a cheap web hosting company (GoDaddy). The issues got resolved after I moved my website to a high performance web host (SiteGround).  

A good hosting solves most of the performance issues and the basic security comes by default with SiteGround hosting plans. 

Chances are still there that we can get into the trouble if we don’t keep our website safe. After all our business (revenue) comes from our website. Loss of every minute of website uptime means revenue loss. 

And we can't afford the data loss at all. Right?

Let’s understand what we need to do to keep our website safe & secure.

Who can hack your website

There can be security threats on your website from two sources. 

#1. Hackers (Humans)

If you are not popular then hackers will not target your website. 

Hackers target big brands, government websites and people who are earning well from their websites.

However, If your website is hosted on your self-managed servers (dedicated hosting, AWS) then bitcoin miners may hack your machine and use for bitcoin mining. 

#2. Bots (Softwares)

The moment you launch your website, lots of automated software tools will start attempting to break your security.

You will start receiving continuous login attempts to your website, spam comments, article submissions and various other un-identified things.

You can install security plugins to keep your website secure.

Tips to Keep Your Website Secure

You must go through the manual health check of your website

#1. Strong Password

Not to mention that you must set a strong password for your website. It should contain Alphabets, Numbers and Special Characters. Never ever use English grammar words or easily identifiable works like your own name or website name as your password. If possible, use non-English words with combination of special characters.

Good password examples - Ud7@Par!nd@, Gl0b@lW@rm!ng

Bad passwords examples - PluginHackers@123, password1234

#2. Change default username ‘admin’

By default wordpress installation will give you admin as the username of administrator. All the bots will try to break the password of default ‘admin’ username, better not to user ‘admin’ as username.

You should either change the default admin username at the time of installation or create a new user as administrator and delete the default ‘admin’ user.

#3. Change default login URLs

By default anyone can see the login page at URL

For the safety purpose, you should change the default URL to something else. 

What to look for in the best security plugin for your WordPress website

There are different plugins to perform different type of security tasks. If you know your requirements then it becomes easy for you to pick the right plugin for securing your wordpress website. Otherwise you can pick the generic plugin that can perform most of the tasks.

Don’t install all the plugins mentioned in this article as installing unnecessary plugins will slow down the performance of your wordpress website.

For the comparison purpose, we will look at the following things apart from the main features of the plugins.

  • check
    Number of Downloads
  • check
    When the plugin was updated recently
  • check
    Positive & Negative Reviews
  • check
    Level of support
  • check

Best Free & Paid WordPress Security Plugins

sucuri wordpress security plugin review

Sucuri is the most popular and full featured security plugin for wordpress. It prevents the website from brute force attacks, scan the entire file system for malware infection and keeps monitoring for any ongoing malicious activities.

The plugin will ask you to get the API code and registration with their website. It’s just a single click process. 

After the registration and API access - the plugin will test the website for any malicious activity.

I fell in love with their interface and clean report.


They provide many other options to secure your website

  1. Scheduled Tasks
  2. WordPress Integrity Diff Utility
  3. Ignore Files And Folders During The Scans
  4. Website Firewall Protection
  5. Block PHP Files Upload in particular directories
  6. Default Admin Account
  7. Plugin and Theme Editor
  8. Updating security keys
  9. Setting up alerts

All in all, the plugin has a beautiful interface and easy to understand settings for a layman.

Look at their hardening options.

Sucuri Hardening Options

You can enable and disable security options with a single click.

However, when I tried to enable the Firewall Protection, I got this message, “SUCURI: The firewall is a premium service that you need purchase at - Sucuri Firewall”

I think that’s justifiable. The sucuri is still giving a lot of options to use as free and high level security options are available in the premium version of the plugin.

Their premium plan starts at $16.66/month and that includes SSL certificate from LetsEncrypt.

I bought the SSL certificate for my website at $80 per year, so my effective price becomes half for the premium version of Sucuri after adjusting the cost of SSL certificate.

The complete website protection package includes

  • Comprehensive Website Security Monitoring/Scans
  • Incident Response Team Security Operations Support
  • Website Firewall (WAF) Coverage

Here is the link to get the premium version of Sucuri ($16.66/month)

You can also get just the Sucuri Firewall Website Application Firewall (WAF) / Intrusion Prevention System (IPS) at $9 per month.

Click here to buy Sucuri Firewall ($9/month)

Update Secret Keys Option

Interestingly, they have option to update all the security keys in case your website is compromised for any reason. The hackers won’t be able to access your website with the old security keys.

wordfence security plugin review for wordpress

This is one of the most popular security plugin for wordpress websites - with more than 1,000,000 installs till date.

The plugin will check if your site is infected with any malware or suspicious code. You will get peace of mind after installing Wordfence security plugin as it protects your website from brute force attacks and malware infections.

After installing WordFence, you will see the dashboard showing the status of features, monthly stats and number of threats counts. 

wordfence security dashboard

And they have additional security measures for the premium users.

“As a free Wordfence user, you are currently using the Community version of the Threat Defense Feed. Premium users are protected by an additional 199 firewall rules and malware signatures.”

Wordfence security plugin did not find any threats on my website.

[Sep 07 07:17:52] Preparing a new scan. Done.

[Sep 07 07:17:52] Scanning for old themes, plugins and core files Secure.

[Sep 07 07:17:52] Scan complete. Congratulations, no new problems found. Scan Complete.

The additional benefits of WordFence plugin

  • Web application Firewall (Premium)
  • Brute Force Protection
  • Login Attempt Limit
  • Blocking IPs
  • Live traffic with IP, hostname, browser of the users
  • Password Audit (Premium)
  • Whois lookup

They offer pretty good options in the free version but the interface is not user friendly. No doubt the plugin is popular but it’s most appropriate for the developers rather than a regular user like me & you.

Single license key with 1 year validity costs you $99.

Here is the link to obtain the license of Wordfence

Personal Biased Opinion : If I have to choose between Sucuri and Wordfence then I will pick Sucuri.

iThemes Security Plugin Review for WordPress

iThemes security will help you change the default admin user name and block the IP address of known hacker website servers.

You will also be secured from brute force attacks. The plugin will send you notifications whenever there is any unauthorised change in your file system.

iThemes offers a lot of options in their free version.

This is how their dashboard looks.

iThemes DashBoard

I went through the security check option and enabled brute force protection.

Security check results are below for my website.

  • Your site is now using Network Brute Force Protection.
  • Changed the REST API setting in WordPress Tweaks to "Restricted Access".
  • Banned Users is enabled as recommended.
  • Database Backups is enabled as recommended.
  • Local Brute Force Protection is enabled as recommended.
  • Strong Password Enforcement is enabled as recommended.
  • WordPress Tweaks is enabled as recommended.

They clearly shows you what options are available in the free version and what would you get in their premium version.

The premium version starts at $80 per year, valid for 2 websites.

Link to get premium version

ITheme Security Paid Version Options

bulletproof security wordpress plugin review

You will be secured against most of the bots attack that try to exploit the vulnerabilities of wordpress, free themes and loopholes of hosting servers.

Bulletproof security will protect your website from running malicious scripts, SQL injections and brute force attacks.

I installed it on PluginHackers and the setup wizard gave me following report. 

bulletproof security setup wizard

It gives this notification after the running the Setup Wizard.

BPS Setup Verification & Error Checks

If you see all Green font messages displayed below, the Setup Wizard setup completed successfully.

If you see any Red font or Blue font messages displayed below, click the Read Me help button above and read the "Notes" help section.”

I saw all messages in Green so I assume the website is secure as per BulletProof plugin.

They give a lot of other options and everything is free.

  1. htaccess File Security Modes ~ RBM, WBM, HPF, MBM & BBM BulletProof Modes
  2. htaccess File Editor ~ Check or edit BPS htaccess files/code manually/directly for testing
  3. Login Security & Monitoring (LSM)
  4. Log All Account Logins or Log Only Account Lockouts
  5. Brute Force Login Protection
  6. Idle Session Logout (ISL) ~ Automatically Logout Idle/Inactive User Accounts Auth
  7. Cookie Expiration (ACE) ~ Change the WordPress Authentication Cookie Expiration Time
  8. DB Backup ~ Full & Partial DB Backups, Manual & Scheduled DB Backups, Email Zip Backups, Automatically Delete Old Backups
  9. Security Log ~ Logs Blocked Hackers & Spammers ~ HTTP 400, 403, 404, 405 & 410 Logging

Most of the options are beyond the understanding capacity of a normal user.

I am also not a security expert. Tested the security plugin as a regular user like you.

All in One WP Security and Firewall

The plugin will offer most of the features that are required by a first time user. Your website will be secured from the brute force attacks and malicious codes that try to steal your website information.

You will see this simple dashboard after installing the plugin

All in One Security DashBoard

The settings are difficult to understand for the novice user however they have provided a lot of options in the free version

  • Taking Backup of .htaccess file
  • Default user admin name and password protection
  • Limiting login attempts
  • Database security and backup
  • Filesystem security
  • Blacklisting IPs
  • Firewall protection
  • Protection against brute force
  • Spam protection

Their malware scanner option is paid but the rest of the features are free.

That makes them stand out from other plugins which offers the basic features under their paid plan.

But the negative point is that the plugin will not provide you continuous monitoring & prevention from threats.

Overall, it’s a good choice for people who don’t have any budget to spend on security plugins.  

security ninja wordpress plugin review

The plugin will automatically check brute force attacks and the strength of your password. You will be able to hide the version of your wordpress from the eyes of hackers.

Free version of Security Ninja plugin will run 48 security tests on your website.

Here is the list

  1. Check if active plugins have been updated in the last 12 months.
  2. Check if active plugins are compatible with your version of WP.
  3. Check if themes are up to date.
  4. Check if there are any deactivated themes.
  5. Check if full WordPress version info is revealed in page's meta data.
  6. Check if readme.html file is accessible via HTTP on the default location.
  7. Check the PHP version.
  8. Check the MySQL version.
  9. Check if server response headers contain detailed PHP version info.
  10. Check if expose_php PHP directive is turned off.
  11. Check if user with username "admin" and administrator privileges exists.
  12. Check if "anyone can register" option is enabled.
  13. Check user's password strength with a brute-force attack.
  14. Check for display of unnecessary information on failed login attempts.
  15. Check if database table prefix is the default one (wp_).
  16. Check if security keys and salts have proper values.
  17. Check the age of security keys and salts.
  18. Test the strength of WordPress database password.
  19. Check if general debug mode is enabled.
  20. Check if database debug mode is enabled.
  21. Check if JavaScript debug mode is enabled.
  22. Check if display_errors PHP directive is turned off.
  23. Check if WordPress installation address is the same as the site address.
  24. Check if wp-config.php file has the right permissions (chmod) set.
  25. Check if install.php file is accessible via HTTP on the default location.
  26. Check if upgrade.php file is accessible via HTTP on the default location.
  27. Check if register_globals PHP directive is turned off.
  28. Check if PHP safe mode is disabled.
  29. Check if allow_url_include PHP directive is turned off.
  30. Check if plugins/themes file editor is enabled.
  31. Check if uploads folder is browsable by browsers.
  32. Test if user with ID "1" and administrator role exists.
  33. Check if Windows Live Writer link is present in pages' header data.
  34. Check if wp-config.php is present on the default location.
  35. Check if MySQL server is connectable from outside with the WP user.
  36. Check if EditURI link is present in pages' header data.
  37. Check if Timthumb script is used in the active theme.
  38. Check if the server is vulnerable to the Shellshock bug #6271.
  39. Check if WordPress core is up to date.
  40. Check if automatic WordPress core updates are enabled.
  41. Check if plugins are up to date.
  42. Check if there are deactivated plugins.
  43. Check if the server is vulnerable to the Shellshock bug #7169.
  44. Check if admin interface is delivered via SSL
  45. Check if MySQL account used by WordPress has too many permissions
  46. See who logged in, from where & what they did
  47. Verify integrity of all core files
  48. Scan the database, plugin & theme files for malware

And the results of my website when I run the security tests.

security ninja test report

My website failed at 18 security tests.

On clicking details, tips and help button, the plugin shows the solution that can be applied manually.

Some of the solutions may not possible on the shared web hosting but I have not tried to fix all the issues reported by the Security Ninja.

The plugin has 5 other option tabs

  1. Core Scanner
  2. Auto Fixer
  3. Malware Scanner
  4. Event Logger
  5. Scheduled Scanner

But all the options are available in Pro version.

The free version will just show you the issues and a recommended solution. But if you really want to fix the issues automatically and protect your website from future threats then a paid version will solve your problem.

However, it’s worth trying the free version of Security Ninja, just to see how many errors are pointed out by the plugins.

And what can you fix manually. 

Acunetix WP Security Review

Acunetix will perform the basic security checks and help you secure your website against brute force attacks. You can change the permissions on files and change the default messages that user see on wrong password attempts.

I read the good reviews when I was researching about the best wordpress security plugins.

But I did not felt like installing the plugin on my website when I saw that the plugin has not been updated for past 2 years.

Yet, Acunetix WP Security offers the basic level of protection for the websites.

The plugin checks for security vulnerabilities and suggests corrective actions

  1. Passwords
  2. File permissions
  3. Database security
  4. Version hiding
  5. WordPress admin protection/security
  6. Removes WP Generator META tag from core code

I included the plugin in the list so that you know that Acunetix was referred as one of the best plugin by WordPress experts and it does it’s work (happy users are saying that). 

wp antivirus protection security plugin

The plugin is totally focused on protecting your website from any virus or malware attacks. It’s useful for people who are running their websites on windows server as most of the viruses attach windows.

You may need protection from malwares, adwares, hidden links, redirection, spywares and other bad code that may be hidden in plugins & themes that we install from any random developers. 

google authenticator

This plugin solves a single problem of unauthorised access to your website by any hacker.

The user will be enforced for double authentication after installing this plugin on your wordpress website. The first step would be using correct username/password and the second step would be authentication through a text/voice or mobile app.

vaultpress security plugin

VaultPress is a combination of backup and firewall protection for your website. You can get those as a combo or separate package depending on your requirement.

The plugin will scan your files and keep you protected against the threats from malwares. 


No matter at which business level are you - A security plugin is must for your wordpress website.

Almost all the plugins provide Protection against brute force attacks (DDos attacks) and basic website health monitoring. All In One Security Plugin will do all the work that is expected from a free plugin.

But if you have an annual budget of $100 to spend on the security of your website - then Go with Sucuri Security (Two options - Securi Firewall $9/month and Complete Protection $16.66/month)

If your requirement is purely Virus & Malware protection then you should pick WP Antivirus Site Protection.

I will update the article after a few weeks after hearing your thoughts in the comments. Let me know if you need any more clarification about the security plugins.