WordPress

F12
Security.

Name: F12 Security
Brand: Forge12
Price: 69.00 EUR
Availability: InStock

F12 Security protects your WordPress installation with an intelligent firewall, hardening measures, and real-time monitoring – free or as a Pro version with advanced features.

WordPress Firewall Real-Time Monitoring

Configure plan from €82.11/year · incl. VAT · 30-day refund

f12-security · plugin

● live

plugin

Configure plan

Choose licenses.

Volume discount applied automatically. Renews yearly, upgrade anytime or cancel before it expires.

PLAN · yearly · 30-day cancellation

F12 Security·1 license

€82.11/year · incl. VAT

↻ renews automatically · pause anytime

30-day refund GDPR + DPA Updates included

Stripe · SEPA · invoice

FAQ

Questions that come up first.

01Do I need a WordPress security plugin?

Yes. WordPress is the most widely used CMS in the world and therefore a popular target for hackers. A security plugin like F12 Security protects against brute-force attacks, malware, and vulnerabilities – without you needing to be an expert.

02Is F12 Security free?

Yes, the free version includes a full-fledged firewall, WordPress hardening, security logging, and GDPR-compliant IP anonymization. For advanced features like 2FA, malware scanner, and rate limiting, there is F12 Security Pro.

03What is the difference from Wordfence?

F12 Security offers some features that Wordfence does not have: Telegram notifications, tamper-proof audit log with SHA-256 hash chain, WAF rule import/export, heuristic malware detection with scoring system, GDPR-compliant IP anonymization, and a modern React-based UI. Additionally, F12 Security is significantly lighter.

04Does F12 Security work with my hosting?

F12 Security is compatible with all common WordPress hostings (shared, managed, VPS, dedicated). No special server configurations are required.

05Does the plugin affect website speed?

No. F12 Security uses caching, asynchronous processing, and chunked scanning to avoid impacting performance. The firewall check occurs before WordPress is loaded.

06Is F12 Security GDPR compliant?

Yes. IP addresses are anonymized by default using HMAC-SHA256. Optionally, IPs can be stored encrypted with AES-256-CBC. Data export and deletion for users are automatically supported.

Answers straight from the founder. Something missing?Ask your own question

ANNUAL PLAN

Three clicks.
Live in 5 minutes.

Configure plan 30-day refund

Features

What it does.

Web Application FirewallAutomatic IP blocking, manual blacklist & whitelist, HTTP method validation, IPv6 support, protection against SQL injection, XSS & null byte injection.

WordPress Hardening (20+)Disable XML-RPC, lock theme/plugin editor, enforce SSL, block PHP uploads & execution, remove version information, disable directory listing, and more.

Login Protection & reCAPTCHA v3Brute-force detection (5 attempts/15 min), Google reCAPTCHA v3 (invisible), honeypot fields (rotating every 6h), strong password enforcement per role.

Security Headers & HSTSX-Content-Type-Options, X-Frame-Options, X-XSS-Protection, Referrer-Policy, Permissions-Policy, HSTS, and configurable Content-Security-Policy (CSP).

REST API & User EnumerationRestrict REST API for unauthenticated users, disable application passwords, prevent ?author=N enumeration, configure session limits.

Security Logging & MonitoringReal-time logging of all events, severity classification, CSV export, configurable retention (default: 90 days), direct IP blocking from logs.

Setup

How it works.

Three steps. Five minutes tops — we timed it with a stopwatch.

Brute-Force & Bot Attacks

Every day, bots test thousands of password combinations on your login. Automated scanners search for known vulnerabilities. Without protection, it’s only a matter of time.

Malware, Backdoors & Zero-Days

Outdated plugins and themes are gateways. Once infected, attackers can completely take over your website. 93 malware signatures and heuristic detection protect proactively.

Data Loss, GDPR & Compliance

Hacked websites jeopardize personal data. This means loss of trust and potential GDPR fines. A tamper-proof audit log helps with accountability.

F12Security.