=== WP Security Optimizer ===

Author: Luca Ercoli
Author URI: http://www.lucaercoli.it/
Contributors: lucaercoli
Tags: block user agent, wpscan, firewall, vulnerability scanner, hackers
Plugin Name: WP Security Optimizer
Plugin URI:  https://www.wp-security-optimizer.com/
Requires at least: 3.2
Tested up to: 4.7.3
Stable tag: 1.2
License: GPLv2 or later
License URI: http://www.gnu.org/licenses/gpl-2.0.html
Donate link: https://paypal.me/lucaercoliit/5

Protect your site from vulnerability scanner and hackers




== Description ==

Prevent hackers to sabotage your rankings in search engines.

Elude attackers that exploits your website and fight Negative SEO attacks made using WPScan and other vulnerability scanner.

An inspection engine monitors the traffic between clients and your Website, enhancing the security of your WordPress installation.

WP Security Optimizer responds with fake informations to vulnerability scanners;
Specially designed for WPScan where it's able to induce false-positives and generate an unreadable report full of thousand wrong data.

Analyzing the User-Agent field in the HTTP request headers, disallow access on your Website to the most widespread penetration test and security assessment applications, including: OpenVAS, Nikto, sqlmap, commix, skipfish and WPScan.

Useful for finding files that are actually used by developers (such of backup of Wordpress's configuration), page accessible but unlinked and README files that expose version number and reveal potential vulnerabilities. 

WP Security Optimizer is able to recognize common probing patterns used to look for vulnerabilities in WordPress, sending security notifications to the email address of blog administrator.

The one thing you should do is activate it using the built-in plugin manager of WordPress. WP Security Optimizer does not require any configuration. Just install it!




== Installation ==

=== From within WordPress ===

1. Login to your weblog
1. Go to Plugins
1. Select Add New
1. Search for 'WP Security Optimizer'
1. Select Install Now
1. Activate WP Security Optimizer from your Plugins page.

=== Manually ===

1. Download and unzip the plugin
1. Upload the entire "wp-security-optimizer" directory to the /wp-content/plugins/ directory
1. Activate the plugin through the Plugins menu in WordPress




== Screenshots ==

1. WP Security Optimizer can block username enumeration made with security assessment toolkit like WPScan
2. Smart features like "Scan Avoidance Technology" ensures false-positives in security scanner that analyze your site
3. WP Security Optimizer will protect you from plugin discovery attack 
4. Stay secure against hackers that use themes discovery techniques on your Wordpress installation
5. Flooding hacker with fake reply, WP Security Optimizer will temporary hang WPScan client
6. WPScan protection: hacker will obtain an unreadable report with 20700+ wrong data




== Changelog ==

= 1.2 =

* Add: E-mail notifications has now geolocation support to trace hacker's IP

= 1.1 =

* Tweak: Does not replace "X-Meta-Generator" header for admin users

= 1.0 =

* First public release