atmosphear

Send an “HTTP/1.1 403 Forbidden” header on a failed login instead of “HTTP/1.1 200 OK”, which is the WordPress default header on failed login. This is a tremendously simple plugin that does only that and absolutely nothing else.
The purpose of this plugin is to provide a way to allow external tools like fail2ban to get a message of a failed login e.g. to prevent a brute-force attack on a firewall level.
For the public domain.
Uses PHP5.3 anonymous functions and will not work on earlier versions of PHP

HTTP/1.1 403 Forbidden header on a failed login

Send an "HTTP/1.1 403 Forbidden" header on a failed login instead of the default "HTTP/1.1 200 OK"

Bill Minozzi

<ul>
<li>Not whitelisted IPs need fill out one aditional email field in login form.</li>
<li>Firewall to Block Malicious Requests, Queries, User Agents and URLS. 100% Plug-n-play, no configuration required.</li>
<li>Option to disable xml-rpc API. </li>
<li>Option to disable Json WordPress Rest API (also new WordPress 4.7 Rest API).</li>
<li>Option to login notification by email.</li>
<li>Alert when this plugin is deactivated.</li>
<li>Alert when a new plugin is installed at your site.(usually first thing hacker do after attack you)</li>
<li>Optionally, let you hide your site (and login page) from attackers.</li>
<li>Stay Up-to-Date: Option to set WordPress to automatically download and install themes and plugin updates.</li>
<li>WordPress Debug enabled warning.</li>
<li>Disable file editing within the WordPress dashboard.</li>
<li>Replace insecure login error message.</li>
<li>Multilingual ready.</li>
</ul>
Report not whitelisted IP address attacks to the respective abuse departments of the infected PCs/servers, through free services of blocklist, to ensure that the responsible provider can inform their customer about the infection and disable the attacker.
No fail2ban or another software required.
We hope our plugin makes the Internet better, safer and helps to clean infected PCs.
<h3>Startup Guide</h3>
1) Open the Request API Key page (under Report Attacks Menu) and follow the instructions to get your free API KEY.
2) After receive the Blocklist email with your API KEY, go to Blocklist Settings Tab and fill out your free API info. Check Yes to begin to report attacks. We can report attacks when the same IP attempt attacks you more than 5 time
3) Important: Add your’s IP address to MY IP White List.
4) At eMail Settings tab, you can customize your contact email or left blank to use your wordpress eMail.
5) At Notification Settings Tab, you can record your option by receive or not email alerts about failed logins.
6) Open the Plugin General Settings Tab and click over Yes (to begin to record failed login attempts).
Remember to click Save Changes before to left each tab.
To manage the failed login’s table, go to Failed Logins Table
That is all. Enjoy it.
<h3>Credits (Thanks)</h3>
Translation to Germany by emha.koeln (@emhakoeln)

ReportAttacks — Brute Force & Login Protection

Report login brute force attacks and improve login protection.

HTTP/1.1 403 Forbidden header on a failed login vs ReportAttacks — Brute Force & Login Protection