Get started with our Free plan, offering almost all protections features, and upgrade seamlessly once you experience the power of GP Website Firewall. With our Pro plan, you’ll enjoy higher limits on requests per day and hour, empowering your website to handle increased traffic and scale effortlessly. Upgrade your protection level today and experience the peace of mind that comes with Genius Plugin Firewall.
FREE
Free Plan
200 000 Hits/month *
 

 

Free Plan
FREE
Get it Now!
 
 
 

 

 
40k
Regular Traffic
40 000 Hits/month
 

 

Yearly Plan
40k
Get it Now!
 
 
 

 

 
Featured
200k
High Traffic
200 000 Hits/month
 

 

Yearly Plan
Featured
200k
Get it Now!
 
 
 

 

 
View all packages
Automatic Traffic Filtering
Enhanced Privacy and Data Protection
Custom Firewall rules
Front office IP & CIDR whitelisting
Front office IP & CIDR blacklisting
Back office IP & CIDR whitelisting
Back office IP & CIDR blacklisting
Front office Geolocation blocking
Back office Geolocation blocking
Page requests rate limiting by time
Front office URLs and requests filtering
Back office URLs and requests filtering
URLs filtering rate limits by time
Search engines & Hosts whitelisting
API Front
API Back
Full API Block
WP XMLRPC
Search engines & Hosts blacklisting
Attacks Protection
XSS (Cross-Site Scripting) protection
SQL injection protection
File inclusion protection
Command injection protection
CSP – Content Security Policy
CSRF (Cross-Site Request Forgery) protection
Web scraping protection
MIME type sniffing protection
Referrer-Policy
HSTS
Intrusion Prevention Intelligence (IPS)
IPS POST Exclude
IPS Header Exclude
Captcha human challenge
IP obfuscation detection
Bind User Agent
Bind to IP
Absolute Timeout
Idle Timeout
Score Fraud Intelligence
SSL/TLS encryption enforcement
Brute force attack mitigation
Two-Factor
CAPTCHA Challenge Tracker
Fingerprint scanner
User agent filtering
POST size LIMIT
Private POST
GET size LIMIT
HEADER size LIMIT
Private Headers
Strict Pages View
Strict Method(s)/page
Strict Key(s) Method(s)/page
Strict Key(s) value(s) Method(s)/page
Security Monitoring and Management
Real-time traffic monitoring
Security event logging export
Analytics Export
Visitor tracer
WAF Profile & Rules Management
Logs Watch
Security notifications/alerts
Security analytics/reporting
Centralized management and monitoring
SSL Monitoring
DNS Monitoring
Major search engines database accuracy
IP abuse contacts listing
Web application vulnerability scanning
Simulator Mode
Live world cyber attack map
Token-Based Authentication
Other Features
Plugins
Custom Lockout message
1-click setup
Secure ticketing support 24/7/365
Requests Rate / Package
* After 30 days, the FREE plan rate limits are 10,000/month, 1,000/day and 1,000/hour
# Max Hits/month Max Hits/day Max Hits/hour
Free 200 000 * 40 000 * 2500 *
40k 40 000 10 000 2500
200k 200 000 40 000 2500
500k 500 000 60 000 2500

A hit is a page request. Each time user asks to display your web application and a request is sent to the firewall to verify his legitimacy to access, a hit is recorded (this does not include internal crons and activities). Each visitor can have one or more hits (page view/your application request). Hits are pooled until they reach the package limits.
Once you hits reach your limits, the firewall will no longer consider your ruleset and will allow all ip requests. Visitor hits are logged, with a focus on both the initial and final hits displayed prominently in your dashboard’s history section.
The hits limits are set far beyond the average traffic that a website does on a monthly bases total hits expected.
This intends to protect our clients from surpassing their monthly package’s in few hours because of abnormal activity. The firewall will alert you about such limits reached, as this will trigger you to check details about the reasons of such suspicious activity.

The service is designed to be compatible with most hosting servers and can be easily installed using PHP. As PHP is widely used across the web, with most of websites (as of May 2023) utilizing it, most hosting environments either have PHP installed or offer support for it. This includes popular applications such as “Prestashop,” “Magento,” “Drupal,” “Joomla,” “WordPress,” “WooCommerce,” “OpenCart,” and many others, which are predominantly built on PHP.
Even if your website primarily consists of static HTML pages, or if you use other programming languages like ASP or Python, as long as your hosting provider supports PHP, you should be able to take advantage of our solution. PHP provides the necessary foundation for integrating our service with your web application, regardless of the specific technologies used. Users should note that our support is exclusively for clients utilizing our plugins on PHP native servers.

In case, the proficiency scale ranges from 0 to 10, where 0 signifies minimal skill requirements, and 10 denotes an advanced level of expertise for managing a WAF. While managing competing WAF services typically demands a baseline skill level of 2, our website application firewall service stands out as the world’s most sophisticated, requiring minimal user skills, making it the ideal solution for individuals with 0 skill level.

We automatically update one to many times a day the list of tens legitimate services, with hundreds of thousands of IP addresses associated with these service providers, among which:
Googlebot, Google crawlers, Msn, Facebook, Yahoo, Yandex, Linkedin, Exalead, Duckduckgo, Blekko, Baidu, Pinterest.
If you think a search engine or a website should/not be among this list, you may just add it into your Website Firewall ruleset and it will be instantly authorized/denied depending on your choice.

No, a Web Application Firewall (WAF) is not the same as an anti-virus software. While both aim to enhance website security, they serve different purposes.
A WAF primarily acts as a protective barrier between a web application and potential threats. It analyzes incoming traffic, filters out malicious requests, and blocks common attack patterns such as SQL injections, cross-site scripting (XSS), and more. Its goal is to prevent attacks from compromising the website’s security and data.
On the other hand, an anti-virus software is designed to detect and remove various types of malware, viruses, and malicious software that may already be present on a computer or network. It focuses on scanning and identifying harmful files or programs and eliminating them to prevent further damage. Read more on wikipedia.

If someone has to choose only one solution between a Web Application Firewall (WAF) and an anti-virus software for website security, the choice depends on the specific needs and circumstances. However, in most cases, having a WAF would be more crucial for protecting a web application.
A WAF provides proactive security measures by analyzing and filtering incoming traffic, blocking potential attacks, and protecting against common vulnerabilities. It can help prevent unauthorized access, data breaches, and application-layer attacks like SQL injections and XSS.
While an anti-virus software is essential for protecting individual computers and networks from malware, viruses, and other malicious software, its focus is primarily on the client-side protection. It may not be as effective in safeguarding the web application itself.
Considering the nature of web applications and the increasing prevalence of online threats, investing in a reliable WAF can provide a stronger defense against web-based attacks and ensure the security of the application and its data.

If a provider claims to offer a Web Application Firewall (WAF) but primarily provides features that are more aligned with anti-virus functionality, it may raise some concerns about their understanding of website security and their ability to effectively protect web applications. While some overlapping features between a WAF and anti-virus software can exist, the primary focus and purpose of a WAF should be on web application security.
It is important to carefully evaluate the capabilities and features provided by the WAF solution as a protection and prevention not as actions which could be made after a website has been hacked.

The Free package ends only if there is more than 30 days of inactive requests which could be the result of the domain name or the hosting package not renewed or anything else, and if you do not upgrade to a higher plan, Website Firewall will no longer consider your ruleset and will allow all ip requests, and your web application will no longer be protected by our solution.

We accept Visa, Mastercard, American Express, Discover, Diners Club, JCB, China UnionPay payments from customers worldwide and Bank Transfer to our US based bank from almost anywhere.

In addition, depending on your location, and client group, you can credit your account with:
Alipay, Google Pay, Cash App Pay, WeChat Pay, Bancontact, EPS, iDEAL, Giropay, Przelewy24 – P24, Afterpay Clearpay, Klarna

Please contact our support team to discuss suitable options based on your specific circumstances.

You can check the FAQ page, search in Client Area knowledge base, chat with a support agent if we are live right now or rise a support ticket if you have already an account with us. Alternatively you can still email us your questions with this form.

Explore More FAQs! Find an answer on our knowledge base or the basic FAQ page.

— Over 100
Tutorial Pages, Downloads & Guides

Save Time! It’s easy & powerful

GP Firewall is the NOC Monitoring Tool you need to protect you website.

Signup!