WordPress Login Security Without Admin Lockouts
Progressive rate limiting that stops brute force attacks without breaking your site. Zero admin lockout guarantee.
Version 0.1 • WordPress 6.0+ • PHP 8.0+ • 100% Free & Open Source
The Problem with WordPress Login Security
Most WordPress security plugins prioritize aggressive blocking over reliability, leading to false positives and admin lockouts.
Admin Lockouts
Aggressive plugins lock out legitimate admins, causing downtime and lost productivity.
Performance Impact
Heavy security plugins slow down your site with constant scanning and database queries.
False Positives
Instant blocking catches legitimate users with typos or forgotten passwords.
How Saurity Works
Progressive rate limiting with exponential delays—not instant blocks—stops attackers while protecting legitimate users.
Progressive Rate Limiting
Instead of blocking immediately, Saurity adds exponential delays after failed login attempts. 5 attempts in 10 minutes? A few seconds delay. 20 attempts? Hard block for 1 hour.
Fail-Safe Architecture
If something goes wrong, Saurity automatically disables itself rather than blocking access. Your site stays accessible, always.
Emergency Recovery Built-In
Kill switch, emergency bypass URL, and automatic lockout detection ensure you're never locked out. If all else fails, simply rename the plugin folder.
What Makes Saurity Different
Built by a WordPress security engineer who values stability over feature bloat.
Zero Admin Lockout Guarantee
Fail-safe design prevents admin lockouts completely.
Emergency Bypass URL
Secret URL to bypass all protection if needed.
Global Kill Switch
Disable all enforcement instantly from admin panel.
Auto-Disable Protection
Automatically disables if admin lockout detected.
Near-Zero Performance Overhead
Single database query, transient-based rate limiting.
Shared Hosting Compatible
No special requirements, works everywhere.
No Cloud Dependencies
Everything runs on your server, no external services.
Clean Uninstall
Removes all tables, options, and transients completely.
Who Saurity Is For
Built for professionals who value reliability and technical honesty.
WordPress Developers
You need security that won't break client sites or lock out users. Saurity's fail-safe design means you can sleep at night.
Agency Owners
Managing multiple sites? Install Saurity once and trust it to work reliably without constant maintenance or support tickets.
Shared Hosting Users
Heavy security plugins slow down shared hosting. Saurity's minimal footprint provides protection without performance penalties.
Security-Conscious Site Owners
Burned by aggressive plugins that locked you out? Saurity prioritizes accessibility over aggressive blocking.
What Saurity Does NOT Do
Honesty matters. Here's what v0.1 deliberately excludes to maintain stability.
Intentional Limitations (v0.1)
- ×No malware scanning or file integrity monitoring
- ×No 2FA or OAuth (planned for future versions)
- ×No CAPTCHA or challenge-response systems
- ×No geolocation or IP reputation services
- ×No email notifications (check logs manually)
- ×No dashboard widget (access via Settings → SAURITY)
These features are excluded to ensure v0.1 is rock-solid and lockout-free. Advanced features will come in future releases only after proving stability.
Install Saurity in 5 Minutes
Free, open source, and designed to never lock you out. Download, activate, and configure in minutes.
WordPress 6.0+ • PHP 8.0+ • MySQL 5.7+ • 100% Free
Core Features
Everything you need for WordPress login security, nothing you don't.
Login Protection
Progressive rate limiting with exponential delays. Stops brute force without false positives.
Learn more →Rate Limiting
Sliding window algorithm with per-IP and per-username tracking. Transient-based for speed.
Learn more →Lightweight Firewall
Blocks XML-RPC abuse, POST floods, and sensitive path access. Minimal overhead.
Coming in future updates