Really Simple Security – Simple and Performant Security (formerly Really Simple SSL)
Easily improve site security with WordPress Hardening, Two-Factor Authentication (2FA), Login Protection, Vulnerability Detection and SSL certificate. Really simple, Effective and Performant WordPress Security Really Simple Security is the most lightweight and easy-to-use security plugin for WordPress. It secures your WordPress website with SSL certificate generation, including proper 301 https redirection and SSL enforcement, scanning for possible vulnerabilities, Login Protection and implementing essential WordPress hardening features. We believe that security should have the absolute minimum effect on website performance, user experience and maintainability. Therefore, Really Simple Security is: Lightweight: Every security feature is developed with a modular approach and with performance in mind. Disabled features won’t load any redundant code. Easy-to-use: 1-minute configuration with short onboarding setup. Security Features Easy SSL Migration Migrates your website to HTTPS and enforces SSL in just one click. 301 redirect via PHP or .htaccess Secure cookies Let’s Encrypt: Install an SSL Certificate if your hosting provider supports manual installation. Server Health Check: Your server configuration is every bit as important for your website security. WordPress Hardening Tweak your configuration and keep WordPress fortified and safe by tackling potential weaknesses. Prevent code execution in the uploads folder Prevent login feedback and disable user enumeration Disable XML-RPC Disable directory browsing Username restrictions (block ‘admin’ and public names) and much more.. Vulnerability Detection Get notified when plugins, themes or WP core contain vulnerabilities and need appropriate action. Login Protection Allow or enforce Two-Factor Authentication (2FA) for specific user roles. Users receive a two-factor code via Email. Improve Security with Really Simple Security Pro Protect your site with all essential security features by upgrading to Really Simple Security Pro. Advanced SSL enforcement Mixed Content Scan & Fixer. Detect files that are requested over HTTP and fix them to HTTPS, both Front- and Back-end. Enable HTTP Strict Transport Security and configure your site for the HSTS Preload list. Firewall Really Simple Security Pro includes a performant and efficient WordPress firewall, to stop bots, crawlers and bad actors with IP and username blocks. 404 blocking – Blocks crawlers as they trigger unusual numbers of 404 errors. Region blocking – Only allow/block access to your site from specific regions. Automated and customisable Firewall rules. IP blocklist and allowlist. Security Headers Security headers protect your site visitors against the risk of clickjacking, cross-site-forgery attacks, stealing login credentials and malware. Independent of your Server Configuration, works on Apache, LiteSpeed, NGINX, etc. Protect your website visitors with X-XSS Protection, X-Content-Type-Options, X-Frame-Options, a Referrer Policy and CORS headers. Automatically generate your WordPress-tailored Content Security Policy. Vulnerability Measures When a vulnerability is detected in a plugin, theme or WordPress core you will get notified accordingly. With Vulnerability Measures, you can configure simple but effective measures to make sure that a critical vulnerability won’t remain unattended. Force update: An update process will be tried multiple times until it can be assumed development of a theme or plugin is abandoned. You will be notified during these steps. Quarantine: When a plugin or theme can’t be updated to solve a vulnerability, Really Simple Security can quarantine the plugin. Advanced Site Hardening Choose a custom login URL Automated File Permissions check and fixer Rename and randomize your database prefix Change the debug.log file location to a non-public folder Disable application passwords Control admin creation Disable HTTP methods, reducing HTTP requests Login Protection Secure your website’s login process and user accounts with powerful security measures. Two-Step verification (Email login) 2FA (two factor authentication) with TOTP Passwordless login with passkey login Enforce strong passwords and frequent password change Limit Login Attempts With Limit Login Attempts you can configure a threshold to temporarily or permanently block IP addresses or (non-existing) usernames. You can also throw a CAPTCHA after a failed login (hCaptcha or Google reCaptcha) Access Control Restrict access to your site for specific regions. Add specific IP addresses or IP ranges to the Blocklist or Allowlist. Useful Links Documentation Security Definitions Translate Really Simple Security Issues & pull requests Feature requests Love Really Simple Security? If you want to support the continuing development of this plugin, please consider buying Really Simple Security Pro, which includes some excellent security features and premium support. About Really Simple Plugins Our mission is to make complex WordPress requirements really easy. Really Simple Security is developed by Really Simple Plugins. For generating SSL certificates, Really Simple Security uses the le acme2 PHP Let’s Encrypt client library, thanks to ‘fbett’ for providing it. Vulnerability Detection uses WP Vulnerability, an open-source initiative by Javier Casares. Want to join as a collaborator? We’re on GitHub as well!
Top keywords
- security27×3.54%
- really15×1.97%
- simple15×1.97%
- login14×1.84%
- really simple14×1.84%
- really simple security11×1.44%
- simple security11×1.44%
- wordpress10×1.31%
- vulnerability9×1.18%
- ssl8×1.05%
- site7×0.92%
- website6×0.79%
Widget Visibility Control
Widget Visibility Control lets you decide exactly where each widget appears on your site. Show widgets only on specific pages, hide them for logged-out users, display different content for different categories – all without writing a single line of code. Looking for Widget Visibility and Scheduling? This plugin gives you control over where your widgets appear: Page targeting – Show widgets on the front page, blog page, specific pages, or 404 error page Content targeting – Display widgets only on certain categories, tags, or custom taxonomies Cascading taxonomy selector – Quickly find terms in sites with many taxonomies (WooCommerce friendly) Include child terms – Match child terms automatically for hierarchical taxonomies User targeting – Show different widgets to logged-in users vs. visitors Role-based display – Target specific user roles (administrators, editors, subscribers, etc.) Author pages – Control visibility on author archive pages Date archives – Target daily, monthly, or yearly archives Post type support – Works with custom post types and their archives Time scheduling – Schedule widgets to appear only during specific date and time ranges. Perfect for promotional banners, seasonal offers, holiday announcements, flash sales, event countdowns, and time-limited content Multiple Conditions Create sophisticated visibility rules by combining multiple conditions: Use OR logic – Show if ANY condition matches Use AND logic – Show only if ALL conditions match Mix and match – Create exactly the rules you need Built for Performance Minimal database queries with intelligent caching Only loads assets where needed (widget screens) Clean, optimized code following WordPress standards Why Choose This Plugin? Lightweight – Focused functionality without unnecessary features All features included – No premium version required Jetpack Compatible – Migrate from Jetpack Widget Visibility without reconfiguring anything Independent Storage – Your rules are stored separately, safe from Jetpack changes Block Editor Ready – Works with both classic widgets and block-based widgets Privacy Focused – No external connections, no tracking, no data collection Safe by design – No PHP eval, no arbitrary code execution; rules are stored as structured data Coming from Jetpack? If you’ve been using Jetpack just for widget visibility and want to reduce your site’s load, this plugin can help: No configuration needed – Your existing visibility rules are automatically imported on activation Same familiar interface – The visibility panel works as you’re used to Keep or clean legacy data – Choose to maintain Jetpack compatibility or clean up completely No disruption – Your widgets will continue working as before Coming from Widget Logic? Widget Logic has been closed on the WordPress plugin directory. Widget Visibility Control is a safe, maintained alternative: No PHP eval – Visibility rules are stored as structured data, not as executable PHP code Assisted import – On detection of Widget Logic data, an importer translates the most common conditional tags (is_home, is_page, is_category, is_user_logged_in…) into proper visibility rules. Works with data from both Widget Logic 5.x and 6.x You decide what’s tricky – For rules we can’t translate automatically, the importer asks per widget whether to import as always visible, always hidden, or skip Original data preserved – Your Widget Logic data stays in the database until you choose to clean it up Coming from Widget Options? If you only use Widget Options for visibility and want a lighter, focused plugin without the pro upsells: No pro version – All features included in the free plugin Visibility-first – We do one thing well: show/hide widgets based on pages, content, users, roles, and schedule Compatible interfaces – Works in the block-based widget editor, the classic widget editor, and the Customizer Quick try – Install alongside Widget Options to compare; switch when you’re ready Developer Friendly Follows WordPress Coding Standards Fully translatable with complete i18n support Action and filter hooks for customization Clean uninstall – removes only its own data Support Need private support or custom development? Do you need one-on-one help, priority troubleshooting, or a custom feature, integration, or tweak built specifically for your site? I offer private support and custom development. Just contact me and tell me what you need. Need help or have suggestions? Official website WordPress support forum YouTube channel Documentation and tutorials Love the plugin? Please leave us a 5-star review and help spread the word! About AyudaWP We are specialists in WordPress security, SEO, AI and performance optimization plugins. We create tools that solve real problems for WordPress site owners while maintaining the highest coding standards and accessibility requirements.