Block excessive login attempts and protect your site against brute force attacks. Simple, yet powerful tools to improve site performance.
Main benefits
Restricts login attempts
Protects custom login pages
IP and username denylist
Email lockout notifications
XMLRPC gateway protection
About this plugin
Overview
Limit Logins
- Restricts the number of retry attempts when logging in per each IP.
- Applies to standard login, XMLRPC, Woocommerce, and custom login pages.
- Weakens the effectiveness of brute force attacks.
Configurable Lockout Timings
- Allows modification of the amount of time a user or IP must wait after a lockout.
- Informs the user about the remaining retries or lockout time on the login page.
- Enhances user experience by providing clear feedback.
IP & Username Safelist/Denylist
- Enables control over access to usernames and IPs.
- Supports custom IP origins like Cloudflare and Sucuri.
- Provides additional security by allowing specific IPs and usernames to be whitelisted or blacklisted.
Enhanced IP Intelligence (Premium)
- Identifies repetitive and suspicious login attempts to detect potential brute force attacks.
- Stores IPs with known malicious activity to prevent future attacks.
- Utilizes active cloud IP data from thousands of websites in the LLAR network.
Features list
Feature
Premium version
Includes 10 domains
Allows management of up to 10 domains.
Performance Optimizer
Optimizes performance starting from 1M requests per month, with 100k requests per domain.
Add more requests as needed
Provides the flexibility to increase the number of requests based on demand.
Resell and package to clients
Enables reselling and packaging of services to clients.
Easily add or remove domains
Simplifies the process of adding or removing domains.
Everything in Professional
Includes all features available in the Professional plan.
Agency Dashboard
Provides a dashboard tailored for agency management.
Pricing
In some cases companies have different prices based on various components like a location. As a result the prices displayed here can differ from the ones you see on their websites.
See all pricing optionsMore plugins like this
FAQ
What do I do if all users get blocked?
How do I know if I’m under attack?
How can I tell that the premium plugin is working?
Could these failed login attempts be fake?
What happens if my site exceeds the request limits in the plan?
What URLs are being attacked and protected?
Why is LLAR more popular than other brute-force protection plugins?
What to do when an admin gets blocked?
What settings should I use in the plugin?
Can I share the safelist/denylist throughout all of my sites?