Plug into possibility
Add new features or connect your favorite tools with thousands of plugins — available on all paid WordPress.com plans.
Security
Take advanced control of your site’s security.
1,366 plugins
- SteadyScoreAudit every installed plugin for reliability, security, and maintenance health. Get a single SteadyScore from 0 to 100 per plugin.
- CyberNote Security CheckerDiagnoses WordPress security settings and version status, presenting plain-language improvement steps in Japanese. No external requests. Lightweight.
- Sedattelli - Bulk Delete Comments & Users with IP BanBulk delete spam comments and user accounts, automatically ban their IPs to prevent spam from returning.
- Royal AI FirewallSee and control every AI agent on your site. Block GPTBot, ClaudeBot, PerplexityBot, and 50+ others with a one-click per-bot dropdown.
- ddosNull Shield — DDoS & Bot ProtectionAI-powered Layer-7 DDoS and bot protection for WordPress. Block bots, stop attacks, and keep your store online — one-click setup.
- PressVitals Site AuditorA headless-first diagnostic engine featuring 22+ proactive probes for performance, security, and DB health. Extensible via REST API and filters.
- Selective Update ControlDisable WordPress updates & restrict plugin installs, update visibility, and file-editor access to chosen admins. Ultimate security update manager.
- Form Guardian for Contact Form 7Protect Contact Form 7 forms from spam with honeypot checks, rate limiting, duplicate submission blocking, disposable email filtering, and logs.
- Invizo Headless ModeTurn WordPress into a headless CMS backend with frontend redirects, CORS controls, draft previews, login branding, and security hardening.
- Conversion.Business Gamified CAPTCHAFrictionless, gamified, zero-telemetry CAPTCHA for WordPress and WooCommerce. Stop bots without annoying your customers.
- Shake ConnectSecurely connects this WordPress site to your WPShake dashboard for cross-site backup, update, monitoring, security, and reporting.
- Kistn API ClientPushes installed plugin and theme inventory to the Kistn API for vulnerability monitoring.
- Nubivio Security Headers, security.txt & NIS2 Compliance for HealthcareSecurity headers, a self-renewing security.txt (RFC 9116) and an optional CRA, GDPR and NIS2 compliance scanner for healthcare WordPress sites.
- ShieldScope – Site Security ScannerA thorough WordPress security scanner that checks your entire site for vulnerabilities and misconfigurations — without slowing it down.
- Obzervi LogsMonitor user activity, track changes, and keep a secure WordPress audit log. Detect suspicious behavior and troubleshoot easily with Obzervi.
- Vulnerability Monitor for the EU Cyber Resilience ActEU Cyber Resilience Act readiness for WordPress: build a CycloneDX SBOM, monitor vulnerabilities and export the documents auditors require.
- PreFlight ScannerScan any plugin ZIP for PHP conflicts, class/function collisions, hook priority conflicts, and malicious code — before installing.
- ScanForge Database SecurityScans and removes malicious scripts and malware injections from your WordPress database tables.
- RankShield — Ranking & Ad-Spend Attack ProtectionProtect your Google rankings and ad budget from bot-driven CTR manipulation, sitemap-sweep attacks, and pay-per-click ad fraud.
- NMIP GuardProtect your website and ad budget from bots, click fraud, and invalid traffic — powered by the NMIP Guard fraud-prevention platform.
