🛡️ WordPress Security Hardening Guide

The complete playbook I use to secure every WordPress site I build — from server-level to plugin-level hardening.

I wrote this after spending weeks researching WordPress security vulnerabilities. Every recommendation is tested, actionable, and prioritized by impact.

What’s Inside

• 25-point security checklist — Server, WordPress, Plugin, Theme, User, Backup layers
• Plugin recommendations — Exactly which security plugins to use (and which to skip)
• .htaccess hardening rules — Copy-paste code to block 90% of attacks
• User permission matrix — Exact capabilities per user role
• Backup strategy template — 3-2-1 rule with recommended tools
• Incident response plan — What to do if you’re hacked (step by step)
• Monitoring dashboard setup — Watch everything in one place

Key Techniques Covered

• Disable XML-RPC (block brute force)
• Implement 2FA for admin accounts
• Move wp-config.php above web root
• Disable file editing in admin
• Set correct file permissions (the exact 755/644/600 map)
• Block PHP execution in uploads directory
• Security headers cheat sheet
• Web application firewall rules

Price: $12 • Instant download • PDF format • Printable

Buy on Gumroad (link coming once Gumroad account is set up)