=== Login Defender ===
Contributors: amzil000ayoub
Tags: users, activity, login, admin, security
Requires at least: 6.0
Tested up to: 6.8
Requires PHP: 7.4
Stable tag: 1.0.1
License: GPLv3
License URI: https://www.gnu.org/licenses/gpl-3.0.html

Login Defender enhances your WordPress site's security by allowing you to change the default login URL.

== Description ==
Login Defender enhances your WordPress site's security by allowing you to change the default login URL and block direct access to wp-login.php. It also logs unauthorized login attempts with IP address, browser, and timestamp for tracking purposes. Includes stats and the ability to reset logs from the admin dashboard.

== Features ==
- Change default login URL to a custom slug
- Block access to wp-login.php and wp-admin (if not logged in)
- Track failed login access attempts (IP, time, browser)
- View login attempt statistics: last 24h, 7d, 1m, 3m, 6m, 1y
- Clear/reset login attempt logs with one click
- Improved security against brute-force login attacks

== How to use ? ==
**Configure Settings**
1. Go to Settings > Login Defender
2. Enable the switch: “Enable Custom Login URL”
3. Enter a slug like my-login (allowed: letters, numbers, _, -)
4. Save settings

**Access Your New Login Page**
- Example: `https://yourdomain.com/mylogin`

**Monitor Attempts**
- See login attempt stats at the top of the settings page
- Click "Clear Logs" to reset tracking data

== Installation ==

= Installation from within WordPress =

1. Visit **Plugins > Add New Plugin**.
2. Search for **Login Defender**.
3. Install and activate the **Login Defender** plugin.
= Or Manual installation =

1. Upload the entire `login-defender` folder to the `/wp-content/plugins/` directory.
2. Visit **Plugins**.
3. Activate **Login Defender** plugin.

== Frequently Asked Questions ==
= What happens to wp-login.php after enabling the plugin? =
When enabled, direct access to `wp-login.php` is blocked. Only the custom login URL you define will work. This prevents bots and attackers from targeting the default login URL.

= Can I still access wp-admin directly? =
If you are not logged in, direct access to `/wp-admin/` will redirect you to the custom login URL. After logging in, `/wp-admin/` works normally.

== Changelog ==
= 1.0 =
- Initial release 

== Screenshots ==
1. admin