Hide My WP Ghost – Security Plugin

Hide all common paths, wp-admin, wp-login, wp-content, plugins, themes, authors, comments, xml-rpc, etc. Add Firewall,…

Hide My WP Ghost is a WordPress Security plugin. It’s one of the best security through obscurity WordPress plugins.

It has over 50.000 secured websites, over 1,400,000 brute force attempts protection and over 5.000 login email alerts.

The plugin adds filters and security layers to prevent Scripts and SQL Injections, Brute Force attacks, XML-RPC attacks and more.

It changes and hides the common paths, plugins and themes paths offering the best protection against hacker bots attacks.

Note! No file or directory is physically changed. All the changes are made by redirects. All the actions are done automatically by the plugin.

After the common paths are changed, all the common paths are hidden from hackers to protect all the plugins and themes.

Check the Demo Website source code:
https://demo.wpplugins.tips/
(the elementor is changed in files and classes using the PRO version)

Check the Redirected URLs in Demo Website (all are redirected to Front Page):
https://demo.wpplugins.tips/wp-admin
https://demo.wpplugins.tips/wp-login

Check the Hidden Common Paths in Demo Website (all show 404 Page Not Found):
https://demo.wpplugins.tips/wp-content
https://demo.wpplugins.tips/wp-content/plugins
https://demo.wpplugins.tips/wp-content/themes

The plugin works with other security plugins and adds a layer of firewall to proactively secure your WordPress website against hackers.

Hide My WP Ghost is compatible with all servers, hosting services, and also supports WP Multisite.

Over 90,000 hacking attacks per minute strike WordPress sites and WordPress hosting around the world, hitting not only large corporate websites packed with sensitive data, but also sites belonging to small businesses, independent entrepreneurs, and individuals running personal blogs.

Security of WordPress sites typically tops the list of concerns for new and experienced website owners alike.

For owners of WordPress sites, statistics like that one raises particular worries about the security not just of individual WordPress sites, but of WordPress itself.

Is your website secure? Check your website with Free Website Security Check

Protect your WordPress website by hiding the authentication paths like wp-admin, wp-login.php and wp-login and change the common WordPress paths like wp-content, wp-includes, uploads and more.

Please support us and translate the plugin in your language:
https://translate.wordpress.org/projects/wp-plugins/hide-my-wp

Thank you all for your trust, support and positive reviews!

Hide My WP Ghost Lite Security Features:

  • Hide WordPress wp-admin URL and redirect it to 404 page or a custom page
  • Hide WordPress wp-login.php and redirect it to 404 page or a custom page
  • Change the wp-admin and wp-login URLs
  • Change lost password URL
  • Change register URL
  • Change logout URL
  • Change admin-ajax URL
  • Change wp-content URL
  • Change wp-includes URL
  • Change comments URL
  • Change author URL
  • Change plugins name URL
  • Change themes name URL
  • Change category URL
  • Change tags URL

**Hidden Paths: **

  • Hide WordPress HTML comments
  • Hide Version and WordPress Tags
  • Hide DNS Prefetch WordPress link
  • Hide WordPress Generator Meta
  • Hide RSD (Really Simple Directory) header
  • Hide Emojicons if you don’t use them

**Disable Paths: **

  • Disable XML-RPC access
  • Disable Embed scripts
  • Disable DB-Debug in Frontend
  • Disable WLW Manifest scripts

**Brute Force Protection: **

  • Brute Force with Math Captcha

**Extra Features: **

  • Backup and Restore settings
  • Fix relative URLs
  • Change classes using Text Mapping from HTML code
  • Cache CSS, JS and Images to optimize the loading speed
  • Weekly security check and reports

Compatible with: WP Multisite, Apache, Litespeed, Nginx and IIS.

Plugins Compatibility updates: WPML, W3 Total Cache, WP Super Cache, WP Fastest Cache, Hummingbird Cache, Cachify Cache, Litespeed Cache,
Cache Enabler, CDN Enabler, WOT Cache, Autoptimize, Jetpack by WordPress, Contact Form 7, bbPress,
All In One SEO, Yoast SEO, Squirrly SEO, WP-Rocket, Minify HTML, iThemes Security, Sucuri Security,
Back-Up WordPress, Elementor Page Builder, Weglot Translate, AddToAny Share Btn, WordFence Security, Sucuri Security, Asset CleanUp

Hosting Compatibility checked: WP Engine, Inmotion Hosting, Hostgator Hosting, Godaddy Hosting, Host1plus,
Payperhost, Fastcomet, Dreamhost, Bitnami Apache, Bitnami Nginx, Google Cloud Hosting, Litespeed Hosting

To hide all the common WordPress paths you need Hide My WP Ghost version. Check all the Ghost security features below.

The admin URL is the most common path that hackers use to break your WordPress site.

Being able to cover up the common paths is critical because you get to keep intruders away from sensitive website data.

This is crucial, and it will provide you with a great experience and really good results in the long term.

It will surely be worth it, not to mention that hiding the common paths will make hacking a lot harder as well.

If you don’t protect yourself, you will end up having a hacked website sooner or later.

This is a free version of the plugin so you can use it for all your blogs without any restrictions.

No theme or other plugins functionality will be blocked, everything will function the same

Note: The plugin requires custom permalinks. Make sure you have it activated at Settings > Permalinks

Hide My WP Ghost Premium security features:

  • Hide WordPress /wp-admin
  • Hide WordPress /wp-login.php
  • Hide WordPress /wp-login/
  • Hide WordPress /login URL
  • Custom wp-admin and wp-login URLs
  • Custom admin-ajax.php URLs
  • Custom lost password URL
  • Custom register URL
  • Custom activate URL
  • Custom logout URL
  • Custom wp-includes path
  • Custom wp-content path
  • Custom wp-json API path
  • Custom plugins name
  • Custom themes name
  • Custom themes style name
  • Custom plugins path
  • Custom uploads path
  • Custom authors path
  • Custom comment URL
  • Custom category path
  • Custom tags path

**Hidden Paths: **

  • Hide plugins name
  • Hide themes name
  • Hide style IDs and META IDs
  • Hide author by ID URL
  • Hide WordPress common paths like: wp-content, wp-includes, /plugins, /themes,upgrade.php
  • Hide WordPress common files like: upgrade.php, install.php, activate.php, wp-config.php, etc.
  • Hide RSD (Really Simple Directory) header
  • Hide DNS Prefetch WordPress link
  • Hide WordPress Generator Meta
  • Add Firewall against SQL/Script injection
  • Hide wp-image and wp-post classes
  • Hide Emojicons if you don’t use them
  • Change URLs in ajax calls
  • Change URLs in all caches files

**Mapping Text and URLs: **

  • Change URLs using URL Mapping
  • Change classes using Text Mapping
  • Change text in CSS and JS files
  • Change CDN URLs using CDN Mapping
  • Change paths in the cache files
  • Change paths in the Sitemap XML
  • Change paths in the Robots.txt

**Disable Paths: **

  • Disable XML-RPC access
  • Disable Rest API access
  • Disable Embed scripts
  • Disable DB-Debug in Frontend
  • Disable WLW Manifest scripts
  • Disable directory browsing

**Brute Force Protection: **

  • Brute Force Protection with Math Captcha
  • Brute Force Protection with Google reCaptcha
  • Custom attempts, timeout, message
  • Manage Blacklist and Whitelist IPs

**Log Activity: **

  • Log user activity
  • Set security alerts by email if users login from different IPs
  • Set security alerts by email on Brute Force attacks
  • Set security alerts by email if users delete articles
  • Set security alerts by email if users delete articles
  • Security Check with over 30 check points

**Integrations: **

  • Support for WP Multisite
  • Support for Nginx
  • Support for IIS
  • Support for LiteSpeed
  • Support for Apache
  • Support for Bitnami Servers
  • Support for Inmotion Servers

  • Recommended by Wp Rocket plugin
    https://goo.gl/VTPYWV

**Protection against: **

  • Brute Force Attacks,
  • SQL Injection Attacks
  • Script Injection Attacks
  • Cross Site Scripting (XSS)
  • and more

See all the Ghost features:
https://hidemywpghost.com

Hide My WP Ghost Knowledge Base:
https://hidemywpghost.com

Check the Demo Website:
https://demo.wpplugins.tips/

Other websites for Hide My WP Ghost Free:
https://hidemywp.app
https://hidemywp.co

Once you use the Hide My WP Ghost plugin you will get custom upload paths, author paths, plugin paths and so on.

You will also have the ability to remove unwanted classes, hide content, disable scripts and so on.

Hide My WP Ghost does an exceptional job at helping you get support for WP Multisite, for Bitnami Servers, Apache, LiteSpeed, Nginx, IIS, WP Rocket Plugin and many others.

It is worth it, so you may want to check it out.

Also, just because you want to add a WordPress Security plugin that hides the common paths, doesn’t mean the plugin has to be slow.

Hide my WP Ghost is very fast, and it won’t impact your website in any negative way.

On the contrary, it will hide the common paths, deliver all the WordPress Security features above and much more while also keeping the site faster at all times!

Important! This is not the Hide My WP Nulled version of the Hide My Wp Codecanyon plugin.

Ready To Protect Your Website From Hackers With The Most USER-FRIENDLY WordPress Security Plugin?

Manually install the Hide My WP Ghost Lite plugin:
Step 1. Log In as an Administrator on your WordPress site.
Step 2. In the menu displayed on the left, there is a “Plugins” tab. Click it.
Step 3. Now click “Add New”.
Step 4. There, you have the “Upload” button. Click the “Upload” button
Step 5. Upload the hide-my-wp.zip file.
Step 6. After the upload it’s finished, click Activate Plugin.
Step 7. Connect the plugin using your email to get a free access token
Step 8. Follow the setup guide from: https://hidemywpghost.com/article/how-to-install-hide-my-wp-ghost-lite/
Enjoy!

Install Hide My WP Ghost Lite directly from WordPress directory:
Step 1. Log In as an Administrator on your WordPress site.
Step 2. In the menu displayed on the left, there is a “Plugins” tab. Click it.
Step 3. Search for “Hide My WP”.
Step 4. After the plugin is shown, click Activate Hide My WP Ghost
Step 5. Connect the plugin using your email to get a free access token
Step 6. Follow the setup guide from: https://hidemywpghost.com/article/how-to-install-hide-my-wp-ghost-lite/
Enjoy!

Hide My WP Ghost Knowledge Base:
https://hidemywpghost.com

Does this plugin work on WP Multisite?

Yes, the plugin works on WP Multisite and you will configure it for the entire network.

The plugin also works with Apache, Nginx, IIS and LiteSpeed servers

Is Hide My WP Ghost working on Nginx Server?

Yes, the plugin works on Nginx Server and you will be guided for the redirects and nginx.conf settings.

The plugin also works with Apache, IIS and LiteSpeed servers

My website theme is not loading correctly after I change the paths. What should I do?

This issue is most likely from setting the rewrite rules.

  1. Make sure you purge the cache if you have cache plugins after you save the Hide My WP Ghost settings.
  2. In case the .htaccess (for apache) or nginx.conf (for Nginx) or web.config (for IIS) are not writable you need to add the rewrites manually.
  3. If you have Nginx server make sure you reload the Nginx after you save the settings.
  4. If the theme is still not loading okay, contact us and we can set up the plugin for you for free.

You can find useful information here: https://hidemywpghost.com/knowledge-base/

I forgot the custom login and admin URLs. What now?

Don’t panic.

You can still access your site with the secure parameter
http://domainname/wp-login.php?hmw_disable=[your_code]

Locked out of my site! I set the plugin, and after I logged out I couldn’t get back in

Rename the plugin directory /wp-content/plugins/hide-my-wp so that the plugins won’t hide the wp-login.php path anymore

Login using http://domainname/wp-login.php and activate the plugin again.

Make sure you remember the secure parameter and it will be much easier.

Does Hide My WP Ghost work for WordPress.com website?

Because of the Jetpack security in WordPress.com website, Hide My WP Ghost can’t change the admin and login paths.

If you already activated Hide My Wp on WordPress.com, remove the directory /wp-content/plugins/hide-my-wp to disable the plugin.

Will this plugin work if I don’t have custom permalinks on my site?

No. You need to have custom permalinks set to ‘on’ in Settings > Permalinks.

You will get a notification in the Settings page if something is not setup right.

What do I need to do before I deactivate the plugin?

It’s better to switch to Default Mode in Settings > Hide My WP.

If you don’t, the plugin will automatically change your site back to the safe URLs and it will tell you what to do if you don’t have write permission for the config files

Is this Plugin free of charge?

Yes. The Lite features of Hide My WP Ghost plugin will always be free.

We will include all the required WordPress Security updates.

To unlock all the features, please visit: https://wpplugins.tips/wordpress

How to set the plugin on Nginx server?

Please follow this tutorial step by step to set up the Hide My WP Ghost for Nginx server:

Setup Hide My WP Ghost on Nginx Server
Configure Hide My Wp Ghost On Nginx Web Server With Virtual Private Server

How to Hide Your Site From WordPress Theme Detectors?

Changing the common WordPress paths will not guarantee that the WordPress CMS is completely hidden.

The old paths are still accessible and hackers are still able to inject SQL and Javascript into vulnerable installed plugins and themes.

Read more: How to Hide Your Site From WordPress Theme Detectors

Is this plugin enough to protect my website from all hackers?

The Free version of Hide My WP Ghost hides the wp-admin and wp-login as described but will not protect you from all hacker attacks.

Hide My WP Ghost hides all the common paths and patterns used but bots to detect that you are using WordPress.

We also recommend you to install Premium Themes and Plugins and not just any WordPress plugin because the free plugins are usually made by beginners and they don’t have security knowledge.

4.1.02

  • Update – Compatibility with Manage WP plugin
  • Update – Added the option to disable the REST API wp-json in Hide My WP – Permalinks
  • Update – Add the plugin as Must Use plugin for better security and compatibility with other plugins
  • Update – Compatibility with Really Simple SSL plugin
  • Update – New UX for better understanding of the redirects in Hide My WP > Tweaks
  • Update – Compatibility with WPML when setting custom wp-admin and admin-ajax
  • Update – Compatibility with WPML when RTL languages are set in dashboard
  • Update – Compatibility with bbPress plugin
  • Update – Compatibility with JetPack plugin
  • Update – Compatibility with Newspaper theme on XMLWPC.php access
  • Update – Added Compatibility with WP 5.5.3

4.1.01 (26 Oct 2020 )

  • Update – Extra caching in htaccess when “Optimize CSS and JS Files” is activated
  • Update – Do not cache if already cached by WP-Rocket or WP Fastest Cache
  • Update – Added Login and Logout redirects for each user role
  • Update – New UX for better understanding of the redirects
  • Fix – 404 error on Nxing server when updating the settings

4.0.12 (01 Oct 2020 )

  • Update – Added compatibility with Pro Theme by Themeco
  • Update – Added compatibility with Smush PRO by WPMU DEV
  • Update – Added compatibility for WP Client plugin by WP-Client.com
  • Update – Header removals for theme detectors

4.0.11 (03 Sept 2020 )

  • Update – Remove version parameter from CSS and JS URLs containing the plus sign
  • Update – Added {rand} in Text Mapping to show random string on change
  • Update – Added {blank} in Text Mapping to show an empty string on change
  • Update – Compatibility with last version WP Fastest Cache plugin
  • Fix – Added a fix for noredirect param on infinite loops
  • Fix – Load the 404 not found files correctly

4.0.10 (31 Aug 2020 )

  • Fixed some errors cause by the last version
  • Fix – Saving options in Mapping, Tweaks and Advanced when followed by Permalinks Changing abort

4.0.09 (27 Aug 2020 )

  • Update – Added the version hook to remove the versions from CSS and JS
  • Update – Load the login on WPEngine server with PHP7.4 when the login is set as /login
  • Update – Detect Flywheel server and add the rules accordingly
  • Update – Compatibility with IThemes Security on custom login

4.0.08 (13 Aug 2020 )

  • Update – WordPress Security Updates for WP 5.5
  • Update – Compatibility with WPML
  • Update – Compatibility with the last versions of the popular plugins

4.0.07 (06 Aug 2020 )

  • Update – Added the option to hide /login and /wp-login individually
  • Update – Added the option to redirect to a custom URL on logout
  • Small Bugs Fix

4.0.06 (09 July 2020 )

  • Update – Compatibility with WPEngine + PHP 7
  • Update – Compatibility with Absolutely Glamorous Custom Admin plugin
  • Update – Compatibility with Admin Menu Editor Pro plugin
  • Fix – Small CSS & Warning issues

4.0.05 (30 June 2020 )

  • Update – Compatibility with WPEngine with PHP 7.4
  • Update – Compatibility with the cache plugins (tested the latest versions)
  • Update – The Security Check report task
  • Update – Plugin security on Security Check
  • Update – The plugins list in Hide My WP
  • Fixed – Removed the map URL from bootstrap css and js
  • Fixed – CSS in Hide My WP Settings

4.0.04 (16 June 2020 )

  • Update – Added HMW_RULES_IN_CONFIG and HMW_RULES_IN_WP_RULES to control the rules in the config file
  • HMW_RULES_IN_CONFIG will add the rules in the top of the config file (default true)
  • HMW_RULES_IN_WP_RULES will add the ruls in the WordPress config area (default true)
  • Update – Change the rewrite hook to make sure the rules are added in the WordPress rewrites before flushing them
  • Update – Compatibility with IThemes Security plugin

4.0.03 (04 June 2020)

  • Update – RTL Support
  • Update – Brute Force Protection Filter
  • Update – Compatibility with more cache plugins like Hummingbird and Cachify
  • Update – Alert when the rewrites are not added correctly in the config file
  • Update – WordPress Security Updates for WP 5.4.1
  • Fixed – Small CSS fixes

4.0.02 (04 May 2020)

  • Fix – login redirect for nginx server
  • Fix – constant warning NONCE_KEY in confi.php
  • Update – Compatibility with WordFence

4.0.01 (29 April 2020)

  • Update – Show the Hide My WP menu only on Network if WP Multisite
  • Update – Prevent from loading the style from wp-admin in the custom login page
  • Update – WPEngine 2020 rewrites compatibility
  • Update – Added option to hide only the IDs and Classes in Hide My WP > Text Mapping
  • Update – Added the option to remove the WordPress common paths in /robots.txt file
  • Update – Added the option to remove the WordPress common paths in /sitemap.xml
  • Update – Compatibility with the most populat plugins and WordPress 5.4.1
  • Fix – Show 404 files in case the rewrites are not working or Allowoverride is OFF
  • Fix – Detect correct https or http sheme for Login Preview and validation
  • Fix – Save the Hide My WP rewrites when other plugin are updating the config file to prevent rewrite errors

3.5.03 (12 March 2020)

  • Update – WordPress Security Updates for WP 5.4
  • Update – Compatibility with Asset CleanUp PRO: Page Speed Booster

3.5.02 (20 Feb 2020)

  • Update – Compatibility with more plugins
  • Update – Compatibility with Asset CleanUp: Page Speed Booster

3.5.01 (20 Ian 2020)

  • Update – Remove the toolbar Security Check text – The test is made every when Dashboard
  • Update – Settings style update
  • Update – Compatibility with more plugins for Webp compression

3.5.00 (02 Dec 2019)

  • Happy New Year! We are happy to present you many new great features.
  • Update – Compatibility with Flatsome theme
  • Update – Compatibility with WP Maintenance Mode plugin
  • Update – WordPress Security Updates for WP 5.3.2
  • Update – Checked and Updated compatibility with other plugins
  • Update – Added the Mapping feature in the menu
  • Update – Added Hide RSD (Really Simple Directory) header
  • Update – Hide Emojicons
  • Update – Disable authentification for XML-RPC
  • Update – Disable Embed Script WP library
  • Update – Disable WLW Manifest scripts
  • Update – Disable DB Debug in Frontend

3.4.03 (12 Dec 2019)

  • Update – WordPress Security Updates for WP 5.3.1
  • Fix – Login redirect issue for themes line Classipress, Maxplore
  • Fix – Restore backup popup visibility

3.4.02 (06 Nov 2019)

  • Update – WordPress Security Updates for WP 5.2.4
  • Update – Checked and Updated compatibility with other plugins
  • Fix – Fixed the IIS rewrites for login page and ajax

3.4.01 (15 Oct 2019)

  • Fix – Update the extension list of files while in Safe Mode
  • Fix – Fix the Brute Force login with Woocommerce paths
  • Updated compatibility with the lastest version of the other plugins

3.4.00 (24 Sept 2019)

  • Update – Skip activation option
  • Update – Add monitor option for registered websites
  • Updated compatibility with more hosting servers
  • Updated compatibility with more cache plugins
  • Updated/Fixed compatibility with other security plugins

3.3.10 (09 Sept 2019)

  • Update – WordPress Security Updates for WP 5.2.3
  • Update – Working with custom wordpress cookie names
  • Update – Checked and Updated compatibility with other plugins
  • Fix – Add the hmwp cookie in the config to work with custom cookies on hidden paths

3.3.05 (16 Aug 2019)

  • Update – Remove Power By header from cache plugins
  • Update – Compatibility with more themes and plugins
  • Update – Update the notification bar
  • Fixed – Hide My WP Menu for WP Mutlisite when it’s configured from network

3.3.04 (07 Aug 2019)

  • Update – Change active plugins order to change admin_url and login_url before other plugins use it
  • Update – Fix initial settings for Safe and Ghost modes
  • Update – Compatibility with Google Cloud Hosting

3.3.03 (31 July 2019)

  • Update – compatibility style with Autoptimizer
  • Update – compatibility with Godaddy Hosting
  • Update – Added support for webp files
  • Fixed – wp-admin issue on Godaddy hostin plan
  • Fixed – cache issue with Autoptimizer plugin

3.3.02 (05 July 2019)

  • Update – added new paths into the restricted list to avoid rewrite errors
  • Update – compatibility style with Wordfence
  • Update – compatibility style with IP2Location Country Blocker
  • Update – compatibility style with Autoptimizer
  • Update – compatibility style with Squirrly SEO
  • Update – compatibility style with Yoast SEO
  • Update – add login URL check in Security Checking tool
  • Update – add admin URL check in Security Checking tool

3.3.01 (15 Jun 2019)

  • Update – Added the define(‘HMW_RULES_IN_WP_RULES’, false); if you want to remove HMW Rules from WordPress rewrit definition in htaccess
  • Don’t show HMW update when new plugins and themes are added if the themes names and plugins names are not changed
  • Show 100% security status if all the security tasks are completed
  • Don’t show the speedometer if the security check didn’t run yet

3.3.00 (14 Jun 2019)

  • Update – Added the option to change all the plugins name
  • Update – Added the option to change all the themes name
  • Update – Added Dashboard Security Widget
  • Update – Show the security level and the list of tasks to fix the security issues
  • Update – Added the option to check the security after the settings are saved
  • Update – Added help link for each plugin section
  • Update – Prevent other plugins to load the style in Hide My Wp

3.2.02 (06 Jun 2019)

  • Update – Empty the wordpress_logged_address cookie on user logout

3.2.01 (24 May 2019)

  • Update – WordPress Security Updates for WP 5.2.1
  • Fixed small bugs

3.2.00 (10 May 2019)

  • Update – Updated Hide My WP Advanced options
  • Update – Added Fix XML files in Advanced Options
  • Update – Compatible with Gutenberg
  • Update – Compatible with All In One WP Security & Firewall
  • Update – Compatible with iThemes Security
  • Update – Compatible with Sucuri Security
  • Update – Compatible with Wordfence Security
  • Update – Compatible with BulletProof Security
  • Update – Compatible with BruteProtect
  • Update – Compatible with Beaver Builder
  • Update – Compatible with Elementor Editor
  • Update – Compatible with Thrive Architect
  • Update – Compatible with Woocommerce
  • Update – Compatible with Yoast SEO
  • Update – Compatible with Squirrly SEO
  • Fix – Don’t load the buffer for files
  • Fix – Relative to Absolute URL fix in CSS style

3.1.01 (03 May 2019)

  • Update – Added the option to change the paths in ajax calls in Hide My WP > Permalinks
  • Update – WordPress Security Updates for WP 5.2
  • Fix – Remove comments from source code without affecting the IE and CDATA

3.1.00 (24 Apr 2019)

  • Fix – Rewrite paths in ajax when custom wp-content set
  • Fix – htaccess rules fix when use set custom wp-content outside Hide My WP

3.0.08 (08 Apr 2019)

  • Update – Hide the custom wp-content set with WP_CONTENT_DIR constant in wp-config.php
  • Update – Hide the custom uploads directory set with UPLOADS constant in wp-config.php
  • Update – Set Stict Login for the custom login path by default to prevent unusual redirects
  • Fix – Hide the old admin ajax after customization

3.0.07 (28 Mar 2019)

  • Update – WordPress Security Updates for WP 5.1.1
  • Update – Checked/Updated compatibility check with more plugins and themes

3.0.06 (23 Feb 2019)

  • Update – WordPress Security Updates for WP 5.1
  • Fix – Config file for Nginx servers

3.0.05 (07 Feb 2019)

  • Update – Security Updates
  • Update – Compatibility check with other plugins and themes
  • Fix – Compatibility with Wp-Rocket last version
  • Fix – Compatibility with Avada Theme last version

3.0.04 (18 Jan 2019)

  • Update – Security updates for 2019 Jan
  • Fix – Remove the wp-image from Mapping feature to prevent breaking the banner for some WP Themes
  • Fix – Update rewrite rules when settings are saved

3.0.03 (12 Jan 2019)

  • Fix – Hide My WP Hidden Notifications

3.0.02 (10 Jan 2019)

  • Update – WordPress Security Updates for WP 5.0.3
  • Fix – Prevent adding cache options when a cache plugin is already installed

3.0.01 (29 Dec 2018)

  • Update – WordPress Security Updates for WP 5.0.2
  • Fix – Loading the theme style for Nginx serves when the rules can’t be set
  • Fix – Compatibility with the last version of WP-Rocket
  • Fix – Compatibility with Avada theme
  • Fix – When defining the UPLOADS constant in wp-config.php

3.0.00 (08 Dec 2018)

  • Update – WordPress Security Updates for WP 5.0
  • Update – Hide My WP is compatible with WordPress 5.0

2.0.16 (04 Dec 2018)

  • Fix – Warning: call_user_func_array() expects parameter 1 to be a valid callback, function ‘return false;’
  • Fix – Woocommerce frontpage login
  • Fix – Multiple subfolders install issue
  • Fix – Replacing the paths in javascript and styles
  • Fix – Optimizing the rewrite rules when going in safe mode

2.0.15 (25 Nov 2018)

  • Update – Added FORCEPATH option to rename the images paths in post editor and builders
  • Fix – Font loading problem while in safe mode rewrite
  • Fix – Prevent removing the Woocommerce rules on setting save proccess
  • Fix – Broken URLs when the paths are similar and can create confusion
  • Fix – Prevent adding short paths and braking the website frontend

2.0.14 (12 Nov 2018)

  • Update – Compatible with the last version of WP-Rocket
  • Update – Tested and Fixed compatibility with WP Engine hosting server
  • Update – Compatible with Woodmart theme

2.0.12 (10 Nov 2018)

  • Update – Reload the Nginx config on settings save if possible
  • Update – Compatible with more themes and plugins
  • Fix – small bugs

2.0.11 (02 Nov 2018)

  • Update – Rewrite option for Nginx, Apache and IIS without config
  • Update – Added the Safe Mode option on rewrite errors
  • Update – Text Mapping to change texts in source code
  • Update – Security updates for WP 5

2.0.10 (30 Oct 2018)

  • Update – Compatible with Gutenberg 4
  • Fix – jQuery Deferrer on WP-Rocket
  • Fix – Email signup validation

2.0.09 (20 Oct 2018)

  • Fix – Corrected the Tools loading
  • Fix – Add decoded trail slash on plugin rewrites

2.0.08 (15 Oct 2018)

  • Fix – Compatibility with WP Fastest Cache
  • Fix – Add decoded trail slash on plugin rewrites

2.0.07 (9 Oct 2018)

  • Fix – Memory check error when the memory is over 1G
  • Fix – Htaccess error when the plugin has spaces in the name

2.0.06 (1 Oct 2018)

  • Update – Compatibility with top WordPress cache plugins
  • Update – Compatibility with top WordPress themes
  • Update – Compatibility with other WordPress security plugins
  • Fix – Minor bugs

2.0.05 (25 Sept 2018)

  • Fix – Memory limit error wne the memory is under 64MB
  • Fix – Setting other paths when the admin or login paths are already set by other plugins or theme
  • Update – Security Check table
  • Update – Compatibility check with top WordPress plugins

2.0.04 (21 Sept 2018)

  • Update – Compatible with Gutenberg 3.8
  • Update – Compatible with WP Super Cache 1.6
  • Update – Compatible with All In One WP Security & Firewall 4.3
  • Update – Compatible with iThemes Security 7.1
  • Update – Compatible with Beaver Builder 2.1
  • Update – Compatible with Elementor Editor 2.2
  • Update – Compatible with Thrive Architect 2
  • Update – Compatible with Woocommerce 3.4
  • Fix – Compatibility with WP-Rocket
  • Fix – Compatibility with Autoptimize
  • Fix – Rewrite paths when moving from Lite mode to Default in Apache, Nginx and IIS
  • Fix – Restore settings didn’t save the config rewrites

2.0.03 (15 Sept 2018)

  • Update – Compatibility with WP Super Cache CDN
  • Update – Checked and fixed the compatibility with Woocommerce
  • Update – Cookie Test for WP Multisite
  • Update – Security updates for SQL Injection and Script Injection

2.0.02 (03 Sept 2018)

  • Update – Made Security Check Notification optional
  • Fixed – Don’t change the paths on update from version 1 to 2
  • Fixed – remove wp-config.php admin cookie line if it remains from other plugins

2.0.01 (10 Aug 2018)

  • Update – New Settings design
  • Update – Works with WP Multisite
  • Update – Works with Apache, Nginx, IIS, and Litespeed
  • Update – Firewall Against Script Injection
  • Update – Customize the Hide My Wp safe link
  • Update – Security Check and options to fix the issues
  • Update – Install and Activate recommended plugins

Security
Ocultar Mi WP – Plugin de seguridad de WordPress
Ocultar meu WP – Segurança do WordPress
Cacher mon WordPress – Plugin de sécurité WordPress
Verstecken Sie mein WordPress – WordPress Sicherheits-Plugin
Hide My WP – WordPress Security Plugin
Security Plugin
Hide my wp free download
Hide my wp login url

  1. Choose the desired level of Security for your site

    Choose the desired level of Security for your site

  2. Change the URLs wp-admin and wp-login.php to different URLs. This is a very important WordPress Security step.

    Change the URLs wp-admin and wp-login.php to different URLs. This is a very important WordPress Security step.

  3. Choose to hide the wp-admin and wp-login.php to increase the WordPress Security and hackers will get 404 errors

    Choose to hide the wp-admin and wp-login.php to increase the WordPress Security and hackers will get 404 errors

  4. Login to your site with the new Hide My WP login URL

    Login to your site with the new Hide My WP login URL

  5. You'll be redirected to the new Hide My WP admin URL

    You'll be redirected to the new Hide My WP admin URL

  6. Activate the Brute Force Protection with Math reCaptcha

    Activate the Brute Force Protection with Math reCaptcha

  7. Add custom paths for wp-content, wp-includes, plugins, themes and more

    Add custom paths for wp-content, wp-includes, plugins, themes and more

  8. Run a security check for your website and see all the vulnerabilities

    Run a security check for your website and see all the vulnerabilities