The CEF WordPress plugin is free and open source. So far it can:
- Fake out WPScan and bots by hiding your real usernames, instead supplying them with fake ones they will never be able to log in with.
- Fake out WPScan's aggressive plugin scan, also causing early scan termination
- Fake out WPScan's aggressive theme scan, also causing early scan termination
...and detect and block:
- Tor browser, with minor delay
- Chrome Incognito, with minor delay, over HTTPS
- Firefox Private Browsing, with minor delay
- Chrome-Selenium in its default configuration, with minor delay
- cURL in its default configuration
- Wget in its default configuration
- HTTP methods other than GET, POST, and HEAD
- Proxy probing
Download the plugin here or simply search for "Floodspark" where you install new plugins on your site
Our Cyber Intent Blog is a living demonstration of the plugin hosted intentionally on cheap, shared hosting to prove that it works in even the most resource constrained environment.
Floodspark Counterespionage Firewall (CEF) – full version has additional capabilities.
More info and FAQs
Email: gs@floodspark.com
Twitter
Facebook