Protect your Wordpress website against Hackers and Spammers by hiding the fact that you are using Wordpress for your site.
Features: Show 404 Not Found Error for /wp-admin Show 404 Not Found Error for /wp-login and /wp-login.php Custom ajax URL: Custom wp-content URL Custom wp-includes URL Custom uploads URL Custom author URL Custom comment URL Give random names to each plugin Give random names to each theme (works in WP multisite) Brute Force Protection Math Login Protection Ban IP if Login Fails
The Hide my Wp plugin has WP Multisite support.
Extra options: Hide _wpnonce key in forms Hide wp-image and wp-post classes Hide Emojicons - Don't load Emoji Icons if you don't use them Disable the API access - Don't load Rest API access if you don't use API calls in your site Disable Embed scripts - Don't load oEmbed service if you don't use oEmbed videos Disable WLW Manifest scripts - Don't load it if you didn't configure Windows Live Writer for your site
More features in Hide my Wp:
Most Wordpress installations are hosted on the popular Apache web server. Apache uses a file named .htaccess to define the access rules for your web site. A thorough set of rules can prevent many types of SQL Injection and URL hacks from being interpreted.