Plugin0 - Build Features & Discover WordPress Plugins with AIBeta
Home Plugins wp limit failed login attempts
Limit Login Attempts (Spam Protection) logo

Limit Login Attempts (Spam Protection)

by wp-buy on WordPress.org

Limit rate of login attempts, including by way of cookies, for each IP. Fully customizable.

(7)
screenshot 1

screenshot 1

Limit the number of login attempts possible both through normal login as well as using auth cookies.

By default WordPress allows unlimited login attempts either through the login page or by sending special cookies. This allows passwords (or hashes) to be brute-force cracked with relative ease.

Limit Login Attempts blocks an Internet address from making further attempts after a specified limit on retries is reached, making a brute-force attack difficult or impossible.

Basic Features

  • Limit the number of retry attempts when logging in.
  • Configurable lockout timings.
  • Email notification of blocked attempts (Detailed email containing all necessary information).
  • Notify the user of remaining attempts.
  • Report containing all blocked attempts.
  • Whitelist/Blocklist of IPs (Support IP ranges).
  • Allow/Block Countries.
  • Automatically block IP addresses that exceed limit login attempts
  • Automatically add IP addresses that exceed blocks limit to the deny list
  • Send notifications about blocked retry (Email sent to admins)
  • Inform the user about the remaining retries or lockout time on the login page.
  • Unlock The Locked users – Easily unlock the locked admin through the email or dashboard.
  • Limit the number of retry attempts when logging in per IP.
  • Limit the number of attempts to log in using cookies.
  • Optional logging and optional email notification.
  • Compatible with Google captcha, Captcha Plus & reCaptcha.
  • Dashboard gives you an overview of your site’s security.
  • Enable or disable the plugin functionality
  • Enable to disable email notifications
  • Compatible with latest WordPress version
  • Woocommerce login page protection.
  • Wordfence & Sucuri compatibility.
  • GDPR compliant.

Advanced Features (PRO)

  • All Basic features included.
  • Save the password that was used by the hacker (Save part of the password and hide the last three digits).
  • Advanced dashboard gives you an overview of your site’s security (Charts for the most important reports).
  • Block attackers by IP, Country, IP range.
  • Mobile Application for the admins to follow up the site security (Download APK).

Video Description

Plugin Settings and Reports

Active installations200+
Weekly downloads
24-22.58%
Version5.6
Last updated6/15/2025
WordPress version4.6
Tested up to6.6.2
PHP version7.2
Tags
anti-spamfirewallLogin Attemptsprotectionsecurity

Related Plugins

WP jCryption Security logo

WP jCryption Security

Prevents forms data against sniffing network traffic through encryption provided by jCryption javascript library.

50+
TTC WordPress Tripwire Tool logo

TTC WordPress Tripwire Tool

This plugin acts as a tripwire for you. It will give you a list of all files changed on your WordPress site in the last 1-99 days.

40+
Mail And Content Protect – Restrict Access and Block Copying logo

Mail And Content Protect – Restrict Access and Block Copying

Safeguard your emails and content from spam and unauthorized access with ease.

40+