This plugin blocks detected attackers or displays them a captcha to check they are not bots.
|Author:||CrowdSec (profile at wordpress.org)|
|WordPress version required:||4.9|
|WordPress version tested:||5.7.2|
|Added to WordPress repository:||14-01-2021|
Click to start download
Note: You must first have CrowdSec installed on your server. The installation is very simple.
CrowdSec is composed of a behavior detection engine, able to block classical attacks like credential bruteforce, port scans, web scans, etc.
Based on the type and number of blocked attacks, and after curation of those signals to avoid false positives and poisoning, a global IP reputation DB is maintained and shared with all network members.
This WordPress plugin is a “bouncer”, which purpose is to block detected attacks with two remediation systems: ban or challenge detected attackers with a Captcha.
- Block aggresive IPs
- Display a captcha for less aggresive IPs
Get more info on the CrowdSec official website.
The general configuration page
Customize the wall pages - Adapt the "captcha wall" page text content with your own
Customize the wall pages - Adapt the "ban wall" page text content with your own
Customize the wall pages - Adapt the pages with your colors. You can also add custom CSS rules.
Advanced settings - Select the live or the stream mode. Select a cache engine (Classical file system, Redis or Memcached). Adjust the cache durations.
Advanced settings - Set the CDN or Reverse Proxies to trust.
The standard Captcha page
The standard Ban page
A Captcha wall page customization (text and colors)
A Ban wall page customization (text and colors)
- You have to install a CrowdSec instance on this server.
- You have to generate a bouncer key on the server on which CrowdSec is running.
- Users can customize both ban and captcha walls
- Users can set CDN IP ranges to trust
- Add Redis and Memcached support for caching data
- Make public CrowdSec mentions hiddable
- Avoid useless bouncing cases
- Add advanced settings page