WordPress.org

Thai

Get WordPress
WordPress.org

Plugin Directory

NETSENSAI Shield

NETSENSAI Shield

By Rafal Gierlicki
Download

Description

NETSENSAI Shield offers a range of security features, including:

  • Changing the login URL to reduce brute force attack risks.
  • Disabling the REST API (WP API JSON) for non-logged-in users.
  • Disabling XML-RPC to prevent unauthorized access.
  • Disabling the WordPress file editor to avoid accidental or malicious changes.
  • Disabling Application Passwords to block unauthorized API access.
  • Applying advanced HTTP security headers (e.g., HSTS, X-Frame-Options, Content-Security-Policy).

  • Integration with W3 Total Cache:

    • Permanently disable .htaccess writes by W3TC,
    • Runtime disabling of Page Cache UI,
    • One-time full cache flush on first admin page load,
    • Automatic cache flush on Secure Options save,
    • Physical cleanup and permanent disable via the W3TC API.
  • Suppression of Site Health REST API availability notices for non-logged-in users (removes false Site Health errors while maintaining full API blocking).

The free version provides both core and advanced Level 3 security functionalities. A PRO version offers extended support, additional features, and automatic protection enhancements.

Installation

  1. Download NETSENSAI Shield from the WordPress.org repository or upload the plugin files to /wp-content/plugins/netsensai-shield/.
  2. Activate the plugin on the WordPress Admin Dashboard under Plugins.
  3. Navigate to Settings > Secure Options and configure as needed.

FAQ

How do I change the WordPress login URL?

Go to Settings > Secure Options and enter your preferred path in the Change Login URL field.

How does disabling WP API JSON improve security?

It reduces exposure of your site’s data via the REST API for non-logged-in users.

Why disable XML-RPC?

Disabling XML-RPC helps protect against brute force attacks targeting that protocol.

What is the effect of disabling the file editor?

It prevents code modifications via the dashboard, reducing the risk of malicious changes.

What headers are included in Level 3 security?

The plugin can apply:

  • Strict-Transport-Security (HSTS)
  • X-Frame-Options
  • X-Content-Type-Options
  • Content-Security-Policy (CSP)
  • Referrer-Policy
  • Permissions-Policy

How does the W3 Total Cache integration work?

On activation or settings save, NETSENSAI Shield clears the W3TC cache, disables the Page Cache UI to prevent conflicts, and blocks future .htaccess writes by W3TC.

How does suppression of the Site Health REST API notice work?

The plugin removes the default REST API availability test in Site Health for guest users, while still enforcing your REST API blocking settings.

Reviews

Amazing wordpress security plugin

12 พฤษภาคม 2025
Why I Chose Netsensai Shield. I’ve tested popular WordPress security plugins: Wordfence, and WP Solid Security (formerly iThemes Security). While each brings solid protection to the table, Netsensai Shield stood out—especially when it comes to modern web security standards. Achieved an A+ rating on SecurityHeaders.com right out of the box—no extra configuration needed. That’s a huge win for privacy-conscious and compliance-driven sites. Lightweight and fast—minimal impact on server resources. Clean, beginner-friendly interface. If you’re looking for a fast, no-fuss plugin that delivers secure headers and solid protection, Netsensai Shield is a fantastic choice—especially for small to medium-sized sites. Netsensai hits a sweet spot between performance, ease of use, and strong out-of-the-box security. PL: Jeśli szukasz szybkiej, bezproblemowej wtyczki, która zapewnia bezpieczeństwo przed najpopularniejszymi atakami i solidną ochronę dla Twojego sklepu lub strony internetowej na Wordpressie, Netsensai Shield to doskonały wybór – szczególnie dla małych i średnich stron ale nie tylko. Netsensai trafia w idealny kompromis między wydajnością, łatwością obsługi a skutecznym zabezpieczeniem już od momentu instalacji. Zero konfiguracji, tylko włączasz opcje. Dodatkowo cena bardzo atrakcyjna. Polecam

Great plugin

23 เมษายน 2025
It’s a great plugin! Very easy to install and effective in its work. Got it for all my sites. I am also impressed by the support team. Very efficient and client-oriented. When approached, responded immediately in a very helpful and friendly manner.
Read all 3 reviews

Contributors & Developers

“NETSENSAI Shield” is open source software. The following people have contributed to this plugin.

Contributors

“NETSENSAI Shield” has been translated into 1 locale. Thank you to the translators for their contributions.

Translate “NETSENSAI Shield” into your language.

Interested in development?

Browse the code, check out the SVN repository, or subscribe to the development log by RSS.

Changelog

1.4.3

  • Fixed readme parsing by removing Markdown syntax from the License URI and ensuring a plain URL.
  • Updated short description to fit 150-character limit.
  • Removed calls to error_log() flagged by Plugin Check.

Meta

Ratings

5 out of 5 stars.

Add my review

See all reviews

Contributors

Support

Got something to say? Need help?

View support forum