Disable User Enumeration
Disable User Enumeration Install Statistics
Try plugin: Disable User Enumeration
We'll create fresh WordPress site with Disable User Enumeration installed. You have 20 minutes to test the plugin after that site we'll be deleted.
About Disable User Enumeration
Disable User Enumeration is a plugin designed to prevent hackers scanning your site for user names using REST API call.Description
User enumeration can be use for brute-force techniques to either guess or confirm valid users in a system. User enumeration is often a web application vulnerability, though it can also be found in any system that requires user authentication.
An enumeration attack allows a hacker to check whether a name exists in the database. For example, to set up a brute-force attack, rather than searching through login and password pairs, all they need is a matching password for a verified user name, saving time and effort.
The phrase “username harvesting” refers to a vulnerability that when exploited allows people or programs interacting with an application to determine what a valid username is vs an invalid username.
**You can check your site have user enumeration by simply type https://selectedfirms.co/wp-json/wp/v2/users that’s it. **
Features:
- We only disable for non logged in users.
- You can deactivate with single click. No extra configuration required.
- Something else about the plugin