Updated: 22-03-21

How to secure a WordPress site with Patchstack?

Agnes Talalaev
from patchstack

This blog post will give you a complete step-by-step tutorial on how to secure a WordPress site with Patchstack.

If you care about your business you need protection from hackers and for this, you need to have a complete overview of your site, the first line of defense, and an intelligence system that will let you know when there’s a risk and how to eliminate it.

In under three minutes (and with no technical knowledge), you can create an account and connect Patchstack to your WordPress site to have your site protected. So, let's see how to secure a WordPress site.

A complete list of Patchstack features for WordPress

Here is a full list of features that Patchstack offers for WordPress developers.


  • Plugin vulnerability detection: detect which plugins you have installed are vulnerable or not safe to use.
  • Theme vulnerability detection: detect which themes you have installed are vulnerable or not safe to use.
  • CMS vulnerability detection: detect if the CMS version you have installed is vulnerable or not safe to use. 
  • Insecure configuration detection: detect if the website or server configurations are not safe.
  • Domain/SSL/TLS expiration detection: detect when your domain security certificates expire.
  • HTTP security headers detection: detect if you have properly set up HTTP security headers and which are missing. Get actionable recommendations on how to improve.


  • Get managed virtual patches: whenever you have vulnerabilities on your website, Patchstack automatically applies virtual patches to your site to keep it protected.
  • OWASP top 10 protection module: protect your website from the most popular security risks.
  • Unlimited custom HTTP rules: create an unlimited amount of custom security rules for your website.
  • Security module management: manage security modules across all your websites. 
  • Site group management: create site groups, enable modules to a group of sites, and set tags for a better overview.


  • Get an overview of the security of your website: access security logs and analytics directly from the Patchstack app. 
  • Generate and download website security reports: generate monthly security reports and export them in PDF format.
  • Get alerts when anything needs your immediate attention: set up custom alert triggers to email or slack.


  • Incident response assistance: get help from Patchstack security experts whenever your site is under attack. 
  • Add additional team members to your account: share your Patchstack dashboard with your team.
  • Download white-label security reports: add your own company logo to Patchstack security reports.

How to secure a WordPress site with Patchstack?

The first step is to make a Patchstack account. You can start the sign-up process by clicking here.

If you have already made an account you can log in by clicking the option on the very bottom or you can click here.

How to secure a WordPress site

After you have made an account and added your account information you can connect your website with Patchstack. To connect your site with Patchstack you need to click add websites. 

You can add more than one site by adding one website URL per row. Make sure your websites are written correctly. When you have added your site(s) then click “Add new websites“.

Patchstack is connected to your site using a connector-plugin. To connect your site click on  Setup plugin and use auto-installation.

Instead of using the auto-installation feature, you can also download the .zip and upload it to your WordPress site manually. Installing Patchstack is really simple.

  1. Log in to your WordPress site.
  2. Click on “Choose file” and select the .zip file you downloaded earlier.
  3. Then click “Install Now”.
  4. After it has been uploaded click "Activate Plugin".

By activating it when doing the manual setup will connect your website with Patchstack. It will configure everything automatically and enable a dashboard widget so you can see logs and statistics on your WordPress dashboard.

After you have added your site it will take roughly 10 minutes before data starts showing up on the dashboard and on the individual site view page.

Great, now you’re protected with Patchstack!

If you followed every step – your website is now connected and protected with Patchstack.

Patchstack gets daily updates from our security team. The daily updates consist of security patches and updates to our security modules that keep your website protected from the latest vulnerabilities.

You can also check the latest vulnerabilities from our WordPress vulnerability database

See the full list of Patchstack features here

Share This Article
Related Articles
NO Credit card required

Protect your WordPress sites against plugin, theme and core vulnerabilities