Sucuri Security is a WordPress plugin dedicated to protecting sites against threats. Developed to provide comprehensive security, it offers essential features for detecting and preventing online risks.
With over 600,000+ active installations and an average rating of , user reviews of Sucuri highlight its effectiveness in auditing files, monitoring modifications, and detecting potential malware.
Advantages and disadvantages
| Advantages | Disadvantages |
|---|---|
| Complete analysis of WordPress files: detects any abnormal modification of core files | Complex configuration for non-technical users |
| Malware protection and in-depth security analysis | Advanced features limited in the free version |
| Customizable email alerts for various security events | English-only interface, if that’s a concern |
| Intuitive dashboard providing a clear overview of site security | WAF firewall requires paid subscription |
| Easy-to-activate security hardening options | Performance potentially impacted by frequent scans |
| Detailed connection tracking: last connections, failed attempts | Limits to proactive resolution of security issues |
| Free plugin with over 700,000 active installations | High cost for comprehensive features ($229/year) |
Sucuri in numbers
| Latest version | 2.7.2 |
| Date of last update | |
| Active installations | 600,000+ |
| Average rating | |
| Launch date | 2012 |
| Publisher | GoDaddy (acquired in 2017) |
| Founder | Daniel Cid |
| Main features | File auditing, anti-malware analysis, security enhancement |
| License type | Free (basic version) |
Sucuri plugin pricing
| Basic platform | Pro platform | Enterprise platform | Junior developer | Multi-Site & Custom Plans |
|---|---|---|---|---|
| $229/year | $339/year | $549/year | $999.98/year | Price on request |
|
|
|
|
|
Sucuri user reviews
Sucuri is a WordPress plugin renowned for its ability to effectively protect sites against online threats. Users praise its robustness, including its unique DNS firewall and comprehensive server-level monitoring.
While the technical interface can be a challenge for beginners, the majority of users appreciate its effectiveness in blocking malicious traffic before it reaches the site.
I’m really glad I installed this plugin, as I’ve been able to spot suspicious connections and other security threats.
dsitechmktg
Sucuri keeps my WordPress out of danger, alerting me to any incident at any time. When I’m resting, it keeps working, and when we meet again, it greets me every morning by telling me my site is clean. An exceptionally good plugin, particularly useful, honest, and free. You couldn’t ask for anything better. Thank you very much Sucuri!
jreygarcia1960
This is an excellent plugin for securing and monitoring your WordPress website. I’ve installed the free version on about 20 sites and the Pro firewall via custom nameservers on a handful of other sites (Pro costs about $199/year per site at the time of this writing). I most often use the default version of the plugin for monitoring and logging, with my own .htaccess rules and .htaccess firewall for reinforcement.
jollygreen
Other Sucuri testimonials
Find out how Sucuri ranks in terms of user satisfaction on various customer review platforms.
Alternatives to Sucuri
Wordfence Security
Wordfence is one of the most popular and reliable security plugins for WordPress, with over 4 million active installations. It offers a robust firewall, malware scans, and real-time traffic monitoring.
Wordfence protects your site against brute-force attacks, malware, and hacking attempts. It’s easy to set up and use, and offers real-time security alerts and weekly email reports.
SecuPress
SecuPress is a feature-rich security plugin that protects your WordPress site from a variety of threats. It includes an advanced firewall, in-depth vulnerability analysis, and protection against brute-force attacks and malicious bots.
SecuPress also offers content filtering, security auditing, and anti-spam protection for forms. It is regularly updated, and features responsive customer service.
MalCare
MalCare is a solid alternative to Sucuri, offering complete protection against security threats. It features an advanced scanner that detects malware in all parts of your site, including the WordPress core, files, and database.
MalCare also includes a firewall that blocks malicious traffic and protection against brute-force attacks. It features self-cleaning of malware without damaging your site, and expert support for additional cleanups.
Sucuri FAQs
How do I install the Sucuri Security plugin for WordPress?
To install the Sucuri Security plugin, log into your WordPress admin panel.
Go to the “Plugins” menu and select “Add new.” Search for “Sucuri” or “Sucuri Scanner” in the search bar, then install the option marked “By Sucuri Inc.”
Once activated, you’ll find a new Sucuri icon in the side menu.
Go to the plugin’s dashboard and click on the “Generate API key” button to activate event monitoring and communicate with Sucuri’s API service.
What are the main features of the Sucuri Security plugin?
The Sucuri Security plugin offers several key features, including WordPress core file auditing, malware detection, security hardening, email alerts, and post-hacking security actions.
It inspects files in the root, wp-admin, and wp-includes directories and compares these files with official WordPress versions.
The plugin also includes a free scan tool called SiteCheck that scans your site for malware, errors, and security anomalies.
How do I configure the security settings in Sucuri Security?
To configure the security settings, go to the Sucuri plugin settings page. Here you’ll find several tabs, including “General Settings,” “Scanner,” “API Service Communication,” and “Website Info.”
In the “General Settings” tab, you can manage security logs, activate a reverse proxy, and import or export your settings.
The “Scanner” tab lets you schedule scan jobs, compare files with originals, and exclude certain files or folders from scanning.
How do I manage security alerts with Sucuri Security?
The Sucuri Security plugin sends email alerts for important security events. You can customize alerts and recipients from the plugin settings page.
By default, alerts are sent to the administrator’s main email address, but you can add other recipients.
You can also manage the maximum number of alerts per hour and the events that will trigger a security alert.
What should I do if Sucuri Security notifies me of modified files?
If Sucuri Security detects modified, added, or deleted files, this may indicate that your site has been compromised. You should check these files and take steps to correct them.
Use the Sucuri Integrity Tool to compare the files with the official WordPress versions, and follow the instructions to resolve any problems detected.
How can I protect myself against brute-force attacks with Sucuri Security?
Sucuri Security helps protect against brute-force attacks by limiting the number of failed login attempts per hour.
You can configure these settings in the “Scanner” tab of the plugin settings. The plugin can also block malicious IP addresses and alert you to suspicious connection attempts.
How do I reset secret keys and passwords after a compromise with Sucuri Security?
In the event of a compromise, it’ s crucial to reset secret keys and passwords.
Use the “Post Hack” menu in Sucuri’s settings to generate new secret keys and reset passwords for user, FTP/SFTP, SSH, cPanel, and database accounts.
This helps prevent attackers from maintaining access to your site.
Thank you for visiting this page about Sucuri 🙏
The WPMarmite team hopes you’ve been able to find out more about this WordPress plugin!
To find out more, visit the official website and their social networks:
You can also share your experience with Sucuri by writing a review below. 👇
Found an error on this page? Click here to report it.
