Stop User Enumeration is a WordPress app, with a 4.9 average rating from 130 reviews, as of Jul 15, 2026.
Stop User Enumeration is a WordPress Plugin Directory app by fullworks. With a rating of 4.9★ from 130 reviews.
AppRanks data: Stop User Enumeration ranks #0 in Fail2ban on WordPress Plugin Directory, placing it in the top 1% of that category.
AppRanks verdict
Generated from live marketplace data — refreshed daily
Stop User Enumeration is a category-leading WordPress app with a growing review traction. It is listed in the Fail2ban category on WordPress Plugin Directory, which AppRanks treats as the canonical taxonomy node for ranking and competitor comparison. 130 reviews put it in the early-traction tier — useful for early-stage stores willing to be on the leading edge. Early-traction review counts are sensitive to single launch periods or feature events, so a 30-day re-check before bigger commitments often resolves whether the trend is sustained. Paid-only pricing means evaluating fit on the marketplace listing or via the developer's documentation before installing. AppRanks tracks rating, review count, pricing tier, and category position daily — the figures on this page reflect the most recent scrape from the canonical WordPress Plugin Directory listing.
Pros
- +High average rating (4.9★) signals consistent merchant satisfaction
- +Published by fullworks — established developer track record
Cons
- −No declared third-party integrations on the listing — verify compatibility with your existing tools before installing
Looking to switch from Stop User Enumeration?
See Stop User Enumeration's alternatives ranked by audit score, rating, and review velocity.
How Stop User Enumeration works
Show full descriptionShow less
Stop User Enumeration is a security plugin designed to detect and prevent hackers scanning your site for user login names.
User Enumeration is a type of attack where nefarious parties can probe your website to discover your login name. This is often a pre-cursor to brute-force password attacks. Stop User Enumeration helps block this initial attack and allows you to log IPs launching these attacks to block further attacks in the future.
Tools like WPSCAN are designed for use by ethical hackers and make efforts to find user login names. Ethical hackers ask permission first, this plugin is designed to reduce the tools when used without permission and when used in conjunction with fail2ban can block those attempts at the firewall.
If you are on a VPS or dedicated server, as the attack IP is logged, you can use (optional additional configuration) fail2ban to block the attack directly at your server’s firewall, a very powerful solution for VPS owners to stop brute force attacks as well as DDoS attacks.
If you don’t have access to install fail2ban ( e.g. on a Shared Host ) you can still use this plugin.
The plugin can stop the user id being leaked by the oEmbed API call.
Since WordPress 4.5 user data can also be obtained by API calls without logging in, this is a WordPress feature, but if you don’t need it to get user data, this
plugin will restrict and log that too.
Since WordPress 5.5 sitemaps are generated by core WP ( wp-sitemap.xml ) which includes a user/author sitemap that exposes the user id. You can enable / disable this in the plugin settings.
PHP 8.4 compatible Tested on PHP 8.4
Features Include
Blocks user enumeration requests by GET or POST
Syslogs a block so Fail2Ban can be used to block an IP
Optionally blocks REST API user requests for non authorized users
Optionally removes author sitemap
Optionally removes author from OEMBED
Optionally removes numbers from comment authors
Privacy This plugin includes an optional email feature for plugin news and updates. When enabled:
Your email address may be sent to https://fullworksplugins.com for important plugin updates and security notices
This is completely optional and requires your explicit consent via the opt-in form in the plugin settings
No data is collected or transmitted without your permission
You can opt-out at any time from the plugin settings
No other personal data is collected or transmitted to external services
The plugin logs attempted user enumeration attacks locally using WordPress’s standard logging system:
* IP addresses of potential attackers are logged locally for security monitoring
* These logs remain on your server and are not transmitted to any external service
* Logs can be used with fail2ban or similar tools for enhanced security
For more information about data handling, please visit https://fullworksplugins.com/privacy-policy/
Category rankings
As of Jul 15, 2026- Fail2ban#0of 10Top 1%
- User enumeration#0of 3Top 1%
- Wpscan#0of 5Top 1%
- Security#35of 666Top 6%
See 90-day rank history for each category
Track daily rank changes, category shifts, and position volatility.
Competitors & alternatives
Stop User Enumeration doesn't have curated competitor matchups yet. Other tracked fail2ban apps on WordPress:
Where Stop User Enumeration stands in the Fail2ban category
Stop User Enumeration ranks #0 of 10 apps in the Fail2ban category, placing it in the top 1% of the listing.
Frequently asked questions
What is Stop User Enumeration?
Stop User Enumeration is an app for WordPress. It currently holds a 4.9-star rating from 130 merchant reviews, and AppRanks has been tracking its public marketplace data on the refresh cadence published in our methodology. It is listed under the Fail2ban category on AppRanks, where you can see its current category position, review-velocity trend, and how it compares against the top alternatives in the same space. Developed by fullworks.