Hide My WP - Amazing Security Plugin for WordPress!

Hide My WP - Amazing Security Plugin for WordPress!

WPMeta Score

Did you know?

Plugin Popularity 5.0
Author Activity 3.7
  • 🎖 Plugin ranks 8,568 amongst 50,000+ plugins.
  • ❤️ Other plugins from this team are not picking up well. Proceed with caution.
  • 🎂 This plugin celebrated it's 6th anniversary 6 months ago.


* Limited Time Special Price! (Only $19)

Customers Feedback

The magic starts now… But before it stick in your mind we don’t change any file or folder and everything is in its default location! we just control access to it and this guarantees maximum compatibility for the plugin.

Hide wp-login.php

Hide or change wp-admin and all of its files (for untrusted users)

Change WordPress theme directory, remove theme Info from stylesheet, replace default WP classes and finally minify it!

Change plugins directory and hash plugins name

Change upload URL, wp-includes folder, AJAX URL, etc.

Change WordPress queries URL:

Change author permalink (or disable it!)

Change or disable feeds

Hide all other WordPress files!

Disable WordPress archives, categories, tags, pages, posts, etc

Continue reading there’s still more!

  • Easily replace any words in your html output file!
  • Notify you when someone is mousing about your WordPress site (included with visitor details like IP, user agent, referrer and even username!)
  • Compress html output and remove comments in source code
  • Remove WordPress meta Info from header and feeds
  • Change default WordPress email sender
  • Custom 404 page!
  • Remove unnecessary menu classes
  • Clean up body classes


5.1 – 04/21/2016

Note: Auto update may not work for this version, please install it manually (using WP upload plugin page)
- New: Minify and clean up stylesheets in child themes
- New: Added ban IP link to intrusion table (Thanks to turner2f)
- New: Ability to disable WP emojies (still works in modern browsers)
- New: New IP to country providers
- Fixed: A breaking bug with full hide feature 
- Fixed: Auto update problem 
- Fixed: A white screen death error which occur in long pages
- Fixed: Removing WP Super Cache header parameter 
- Fixed: A small security bug related to cookies 
- Improved: Change IP details provider (Thanks to turner2f)
- Improved: Trust IP and Firewall tabs were merged for a simpler UI
- Improved: WP 4.5 compatibility 
- Other minor improvements

5.01 – 11/27/2015

- Fixed an error in old PHP servers (5.3)  
Note: WP recommends PHP 5.6 or more

5.0 – 11/27/2015

- NEW: Introducing Trust Network which blocks common dangerous patterns and IPs without even enabling IDS
- NEW: Completely rewritten New Admin Path to make it clearer to configure
- NEW: Ban countries, IPs or IP ranges from admin page
- NEW: Country flags plus a link to details were added to intrusion log table.
- IMPROVEMENT: Better Hiding WP from CMS finder tools 
- IMPROVEMENT: Compatibility test with PHP 7 (RC)
- FIX: An important bug which cause problem to find super admin
- FIX: Double slashes(//) in multisite subdomains
- FIX: Syntax problem in Windows (IIS) servers
- FIX: Problem with displaying messages
- FIX: Issue with importing specific kind of settings
- FIX: Unsaved checkboxes in settings page
- FIX: Fatal error in IDS files
- ...and other minor improvements

4.54 – 08/12/2015

- New: Hiding default WP robot
- Fixed: Security bug in IDS log page
- Improved: Limit access to cookie to HTTP only
- Improved: Compatibility test with WordPress 4.3 RC

4.53 – 08/02/2015

Note: If you configured HMWP manually (multi-site, Nginx, etc.) It’s require to do it again after updating)
- Improved: New hash function to make it almost impossible to guess plugin names
- Fixed: Firewall is now the first loaded plugin
- Fixed: A bug in anti-spam system
- Fixed: important security bug in displaying IDS log
- Improved: Internal web server queries are not guessable now

4.52 – 07/28/2015

- Fixed: an important security bug
- Fixed: a php warning error
- Improved: Firewall run sooner to act faster
- Improved: Avoid direct access to PHP files now works with double extension files
- Improved: provided IP is more reliable now

4.51 (and 4.51.1) – 07/10/2015

- Improved: Replace rules limitation has been increased to 30
- Improved: Better cover for wordpress
- Fixed: 500 error in old versions of Apache
- Fixed: A bug which prevents replace rules to be restored by undo button
- Fixed: Fatal error in older PHP versions 
- Several small but helpful bug fixes (4.51.1)

4.5 – 06/20/2015

- New full hide feature to improve undetectability of WP and themes
- New CDN path tools which makes it easy to setup CDN
- New path for wp-content (useful for some plugins which located in wp-content like cache plugins)
- Improved  Simplification of UI
- Improved: IDS for anti-XSS attacks
- Improved: Antispam checks
- Improved: Replacement tools to make it easy for everyone
- Improved: IDS system for slightly faster responses
- Fixed: Reply email bug in Contact form 7
- Fixed: Loading issue of HMWP_MS.CSS 
- Fixed: WP-Rocket Minify incompatibility

4.03 – 02/14/2015

- New Option to replace new URLs in AJAX responses 
- BUG FIX: Inserting media with safe HTML minify enabled 

4.02 – 02/06/2015

- Bug Fix: wp-signup.php was hided 
- Bug Fix: WP IDS rules were updated
- Bug Fix: Make New admin path work in Multisite 
- Bug Fix: Purchase code remains after importing new settings 
- Bug Fix: New admin path for Nginx webserver
- Improvement: IDS alert email is reformatted 
- Improvement: More readable info for IDS log 

4.01 – 11/12/2014

- Compatibility with Hyper Cache, WP-Rocket
- General improvement for auto update 
- A bug fix related to displaying message

4.00 – 11/06/2014

- NEW: Introducing IDS (Intrusion Detection System) with customized rules for WP
- NEW: Auto plugin update (require valid purchase code)
- NEW: Finally official support for IIS (Windows servers!)
- NEW: Undo previous settings whenever you want!
- NEW: Light settings scheme was added
- NEW: Ability to use backslash in Replace in HTML
- IMPROVEMENT: Full compatibility for gantry-based themes
- IMPROVEMENT: Options mapper was written
- IMPROVEMENT: Automatic compatibility test has been added to guide users
- FIX a bug caused by author base default value
- FIX year numbers bug (for upload directory)

3.0 – 07/02/2014

- NEW: Ability to rename wp-admin! 
- NEW: Simple and sweet anti-spam
- NEW: Disable directory listing for plugins and themes and WP 
- WP 1.9 compatibility plus UI adjustment
- Deactivating HMWP now store saved settings
- API filter added to resetting to defatults 
- wp-cron.php and upgrade.php added to whitelist
- Fixed a bug in page preview
- Fixed feed and canonical URL issue
- Fixed multisite table prefix
- Fixed bug in notification message when login address has changed
- Fixed multiple messages in settings page
- Fixed problem with minify plugins that cause 400 error
- Fixed base address problem in configuration of some multisite installs
- Fixed a bug in register URL 
- Fixed a notice message

2.2 – 11/20/2013

-Bug Fix: Now entering Purchase Code will remove annoying warning messages
-Bug Fix: Compatibility with /subdirectory/subdirectory/(..) network-enabled installs 
-Improvement: WordPress 3.7 compatibility
-Improvement: Canonical URLs is now enabled by default (plus for settings schemes)
-Improvement: Several colorful messages added to reduce support queries
-Bug Fix: Buddypress pages bug (in some conditions)
-Bug Fix: Fix /wp-login.php/ URL
-Bug Fix: Remove a notice warning in generating debug report

2.1 & 2.11 09/21/2013

- Bug Fix: A problem in replacing new URLs (2.11) 
- New Feature: Login parameter 'hide_my_wp' is now changeable!
- Improvement: W3 Total Cache Minify module works now! (Read FAQ)
- Improvement: Better blocking of CMS finder tools
- Improvement: W3TC credit text will be removed automatically (for untrusted users)
- Improvement: Presstrends code added
- Bug Fix: Log out problem in some environments
- Bug Fix: Warning message appeared in some environments
- Bug Fix: A number of fixes in helper class

2.01 – 08/11/2013

- Bug Fix: Added Replace in HTML back 
- Bug Fix: Correct a warning message

2.0 – 08/10/2013

- Improvement: Full WordPress 3.6 compatibility
- Feature: Replace, rename or hide any file or folder
- Feature: Simple page compression added
- Feature: Block access of CMS finders tools to pages (beta)
- Improvement: Change order of header info to hide WP better
- Improvement: Add xmlrpc.php to excerpt list by default 
- Improvement: Cached CSS age extended to 3 days
- Improvement: Better description and messages for easier configuration
- Bug Fix: Scheduling problem for plugins like Backup Buddy was fixed
- Bug Fix: Preview button problem in new post page was fixed
- Bug Fix: Problem in full SSL websites was fixed 
- Bug Fix: Notice message appear in update settings was fixed
- Minor changes

v1.81 & 1.82 – 06/10/2013

- Bug fix: A bug caused problem with new upload path in subdomain installs
- Bug fix: Removed unnecessary success messages for reset defaults, import, etc.
- Bug fix: Removed an unnecessary warning message. (1.81)
- Bug fix: Correct miss-spelled labels

v1.8 – 06/08/2013

- Feature: Ability to choose manual configuration to use customized htaccess
- Improvement: Better quick fix guide
- Bug Fix: External uploaded WordPress images now works correctly
- Bug Fix: CSRF flaw detected by Julio (boiteaweb.fr)
- Bug Fix: Trim Replace in HTML field
- Bug Fix: Better replace for WooCommerce plugins
- Minor changes

v1.7 – 05/06/2013

- Feature: Ability to replace JS URLs for different entities (e.g.  /wp-content /themes)
- Improvement: BulletProof Security plugin compatibility
- Improvement: Ability to replace codes with '=' sign using [equal] tag
- Bug Fix: Child themes bug fix 
- Bug Fix: A bug in exporting Replace in HTML content
- Bug Fix: A bug in exporting values with double slashes
- Minor changes in UI

v1.6 – 04/20/2013

- Feature: Ability to rename all plugins (useful for plugins located in premium themes)
- Improvement: New and better settings scheme
- Improvement: Added quick fix guide to Start tab
- Files: Update file structure to work with new Codecanyon changes
- Bug Fix: ob_start bug fix for better compatibility
- Bug Fix: Search widget bug
- Bug Fix: Hide login, admin, etc. shortcuts
- Bug Fix: Replace all AJAX URLs
- Bug Fix: Fix a bug in Nginx rewrite rules in sub-folder installs
- Documentation: Added documentation for Nginx and multisite configuration
- Minor changes

v1.5 – 04/04/2013

- Performance: Up to 3 times faster with new partial replace mode!
- Feature: Nginx and Multi-site support. 
- Feature: Child themes support
- Feature: Two different minify options for HTML and CSS
- Feature: Better compatibility with two additional options for PHP files access
- Feature: Option to hide _wpnonce and theme screenshot
- Improvement: Better support for sub-directory installs
- Improvement: More compatibility for class clean up options
- Bug Fix: Style path bug
- Bug Fix: Fixed login URL problem and better compatibility with login-related plugins
- Minor bug fixes 

If there is still ambiguity, please check out screenshots or read our FAQs.

Please signup in our NEWSLETTER to receive important news related to HMWP.