https://github.com/ebrasha/abdal-security-headers

Abdal Security Headers is a powerful WordPress plugin that enhances your website's security through HTTP security headers. It provides an easy-to-use interface for managing security policies and protecting against common web vulnerabilities.
https://github.com/ebrasha/abdal-security-headers

abdal abdal-security-group ebrahim-shafiei ebrasha hsts security security-headers wordpress wordpress-plugin wp

Last synced: about 1 month ago
JSON representation

Abdal Security Headers is a powerful WordPress plugin that enhances your website's security through HTTP security headers. It provides an easy-to-use interface for managing security policies and protecting against common web vulnerabilities.

• Host: GitHub
• URL: https://github.com/ebrasha/abdal-security-headers
• Owner: ebrasha
• License: gpl-2.0
• Created: 2019-03-20T15:53:27.000Z (almost 7 years ago)
• Default Branch: master
• Last Pushed: 2025-03-13T14:25:56.000Z (12 months ago)
• Last Synced: 2025-04-06T17:13:10.223Z (11 months ago)
• Topics: abdal, abdal-security-group, ebrahim-shafiei, ebrasha, hsts, security, security-headers, wordpress, wordpress-plugin, wp
• Language: PHP
• Homepage:
• Size: 617 KB
• Stars: 5
• Watchers: 1
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

          
# 🛡️ Abdal Security Headers - User Guide



  



 

[Persian User Guide](README_fa.md) | [English Developer Guide](docs/README_Developer_en.md) | [Persian Developer Guide](docs/README_Developer_fa.md)

## 📝 Introduction

Welcome to Abdal Security Headers! This WordPress plugin helps protect your website by adding essential security headers. This guide will help you get started with the plugin and make the most of its features.

## ✨ What This Plugin Does

### Security Protection

- 🔒 Protects against cross-site scripting (XSS) attacks

- 🛡️ Prevents clickjacking attempts

- 🔐 Stops MIME-type sniffing attacks

- 🌐 Forces secure HTTPS connections

- 🚫 Controls sensitive information sharing

- 🛑 Manages which resources can load on your site

### Easy-to-Use Features

- 📝 Simple switches to enable/disable security features

- 👁️ Real-time preview of security settings

- 🎨 User-friendly interface with clear options

- ✅ Automatic validation of security settings

- 📊 Security status monitoring

### WordPress Integration

- 🎭 Option to hide WordPress version

- ⚡ Cleanup of unnecessary headers

- 🔌 Protection for WordPress APIs

- 🔑 Control over site access

- 📢 Enhanced privacy features

### User Experience

- 💫 Modern, clean interface design

- 🎛️ Organized settings in clear sections

- 🌐 Support for right-to-left languages

- 💡 Helpful tips and explanations

- 🎯 Easy-to-understand options

### Additional Benefits

- 📱 Works perfectly on mobile devices

- 🔄 Backup and restore settings

- 📝 Clear error messages and warnings

- ⚙️ Flexible configuration options

- 🛠️ Compatible with other security plugins

## 🚀 Getting Started

1. Install the plugin from your WordPress dashboard

2. Go to `Settings -> Security Headers`

3. Enable the security features you want to use

4. Save your settings

## ⚙️ Basic Settings

- **X-XSS-Protection**: Prevents cross-site scripting attacks

- **X-Frame-Options**: Prevents clickjacking attempts

- **X-Content-Type-Options**: Prevents MIME-type sniffing

- **Strict-Transport-Security**: Forces HTTPS connections

- **Content Security Policy**: Controls which resources can be loaded

## 🔰 Recommended Settings

For basic protection, we recommend enabling:

1. All basic security headers

2. WordPress version hiding

3. Remove unnecessary headers

4. Basic Content Security Policy

## ❓ Frequently Asked Questions

1. **Is this plugin compatible with caching?**

   - Yes, works with all major caching plugins

2. **Will this break my website?**

   - No, the default settings are safe for most websites

3. **Do I need technical knowledge?**

   - No, the interface is user-friendly with helpful tooltips

## 🐛 Reporting Issues

If you encounter any issues or have configuration problems, please reach out via email at Prof.Shafiei@Gmail.com. You can also report issues on GitLab or GitHub.

## ❤️ Donation

If you find this project helpful and would like to support further development, please consider making a donation:

- [Donate Here](https://ebrasha.com/abdal-donation)

## 🤵 Programmer

Handcrafted with Passion by **Ebrahim Shafiei (EbraSha)**

- **E-Mail**: Prof.Shafiei@Gmail.com

- **Telegram**: [@ProfShafiei](https://t.me/ProfShafiei)

## 📜 License

This project is licensed under the GPLv2 or later License.