BitFire Security – Firewall, WAF, Bot/Spam Blocker, Login Security

Real-Time Security for WordPress

BitFire protects your website from bots, hackers, malware, and critical vulnerabilities – before they can cause damage.

This plugin brings advanced security technology used by large enterprises to your WordPress site, now available in a free version. Whether you manage a business website, blog, or WooCommerce store, BitFire gives you powerful protection and visibility into your traffic.

Smarter Protection with AI

Most security plugins wait for updates to detect new threats. BitFire takes a different approach: it uses artificial intelligence and real-time request analysis to stop zero-day attacks, bots, and malicious users before they get access to your site.

Our AI learns what normal traffic looks like for your site and blocks anything suspicious – without you needing to configure endless rules.

“Unlike traditional firewalls that allow everything by default and react to known threats, BitFire only allows verified traffic – stopping new and unknown attacks instantly.”

Key Features

🔐 Security Highlights (Free & Pro)

• Stop Bots Automatically – Block fake users, spam bots, and scanners (no captchas needed).
• Malware Scanner – Scan your site for infected or unknown files using a fast hash-based scanner.
• Real-Time Traffic Monitor – See who’s visiting your site, including IP, city, browser, request rate, and referrer.
• Login Protection – Block bots from abusing your login page, detect phishing attacks, and stop brute-force attempts.
• Human / Bot Detection – BitFire can tell the difference between real users and fake browsers with 99.7% accuracy.
• IP Reputation – Block over 300,000 known malicious IPs with real-time threat intelligence.

🚀 Built for Speed

• BitFire logs traffic in under 2ms per request, thanks to a high-performance binary logging engine.
• Unlike bulky WAFs that rely on large rule sets, BitFire looks at the intent behind every request – giving you faster speeds and fewer false positives.

🔍 Live Traffic Monitoring

• Track every visitor request in real time
• Remove blind spots and gain confidence in your site security
• Filter traffic by IP, URL, response code, or user-agent
• View bot fingerprints from over 3,000 known bots and 180 real browsers
• See what was blocked and why

🛡 Runtime Protection (PRO)

BitFire includes WordPress’s first Runtime Application Self Protection (RASP) firewall.

This means BitFire watches what your plugins and code are doing in real time and blocks anything suspicious – including: – Unauthorized file modifications (File RASP) – Suspicious database queries (Database RASP) – Unauthorized account creation or privilege escalation (Authentication RASP) – Dangerous outbound network requests (Network RASP)

“It’s like a bodyguard inside your WordPress server – watching every move and stopping threats before they execute.”

What’s Included in the Free Version?

• Traffic logger (current day only)
• Real-time bot and malware detection
• File scanner with fast hash matching
• Block plugin and theme enumeration tools
• Live IP and user-agent request viewer
• Block hacking tools like WPScan, Nmap, Nikto, etc.

What’s in BitFire Pro?

• Web Firewall rated A+ by cloudbric with real-time updates
• Full Runtime Self Protection engine (File, Database, Account, and Network protection)
• Advanced login protection and phishing detection
• Malware scanner with 14 million+ clean file hashes
• Automatic browser fingerprinting and allowlists
• Auto-configured CSP and security headers (A+ rating)

• Increased traffic logging and historical view to 30 days

  ** Independent WAF testing by Cloudbric https://labs.cloudbric.com/wafer **

• BitFire [PRO] – 🇦 (94%)

• MalCare [PRO] – 🇫 (34%)
• WordFence [PRO] – 🇩 (41%)
• iThemes Security – 🇫 (2%)
• Ninja Firewall [PRO] – 🇩 (67%)
• Site Ground Security – 🇫 (2%)
• Shield Security [PRO] – 🇫 (2%)

Trusted by Enterprises, Now Available to You

BitFire is used by major organizations on our managed enterprise platform and developed by a veteran security architect with over 20 years of experience defending Fortune 500s and critical infrastructure.

This free release brings our best bot detection and traffic logging features to the WordPress community – at no cost.

Learn More

Visit https://bitfire.co for: – Full product comparison – Malware removal services – Pro pricing – Support

Privacy / Monitoring / Data Collection

1. Privacy. We take privacy very seriously. BitFire inspects all traffic going to the webserver and takes care to filter out any potentially sensitive information by replacing it with redacted. The config.ini file includes a list of common sensitive field names under the “filtered_logging” section. You can add additional fields to filter in the config file by adding a line “filtered_logging[field_name] = true” and replacing “field_name” with the name of the desired parameter to filter.

2. BitFire includes an error handler which monitors it’s operation. In the event an error is detected in the BitFire software; including during install, an alert can be sent to BitFire’s developer team. The development team monitors these errors in real time and includes fixes for any detected errors in each new release.

3. Malware scanner. BitFire sends tiny 64bit hashes (signatures, or fingerprints) of every file to our hash database. For instance, index.php may hash to the number: 812612388126487. The database is many gigabytes and centrally located on our servers. BitFire uses that information to determine if a file has been modified or is a known good file and sends the results back to your site. Client hashes are never stored off your server.

4. Log data and configuration data is stored locally on the filesystem in the wp-content/uploads/bitfire_RANDOM directory. This directory is unique and hidden from the Internet and protected by an .htaccess file. Web servers that are configured to allow directory listings will want to ensure that the file wp-content/uploads/index.php is present to prevent directory listings. The random directory name is 12 characters long and is generated on install. The directory is not accessible from the Internet and is protected by a .htaccess file.