Protect What You Build

Hide My WP Ghost by Squirrly answers the pressing need for increased WordPress site security by offering an extra layer of protection against common attacks such as script & SQL Injection, brute-force, and more.

Included: over 60 features to help site owners:

Hide My WP Ghost

Is your site built on WordPress?

Then it has probably already been detected by hacker’s bots trying to break in and compromise vulnerable data.

Recent stats show 30K sites get hacked every day.

More than 30% of them are WP sites. Your site may be under attack right now. (♫ bad bots, bad bots, what you gonna do? ♫)

The easiest way to protect your site against such attacks is to hide the fact that you are using WP.

Hide My WP Ghost by Squirrly helps you do that.

100K +

Secured WordPress Sites

1.6 Million

Brute Force Attacks Blocked


Email Security Alerts sent in the Past Year


Site Protection


adds an extra layer of protection for enhanced security against common attacks such as script&SQL Injection, brute-force, etc

provides 3 pre-configured security levels to choose from and +60 features for monitoring and upgrading your site’s security;

uncovers site security vulnerabilities and guides you through proactive measures you should take to amp up your defense;

Best for: business owners, bloggers, freelancers, entrepreneurs, agencies wanting to enhance their WordPress site’s security.

Reviews (159)

Rated 4.4 / 5


Introducing Hide My WP Ghost by Squirrly: Invisibility Cloak Against Hacker Bots and Spammers.

This highly-customizable WordPress plugin that makes it easy to upgrade your site’s security in minutes. It perfectly complements other popular security solutions by providing an EXTRA layer of security that others don’t offer for specific WordPress-related vulnerabilities.

It’s meant to complete functionality and help site owners build a more comprehensive defense system against common attacks.

One of the things that makes it a standout solution is that it’s easy to use. With one click, users can pick from 3 pre-built security levels and automatically configure the plugin to achieve the desired level of protection.

Customize and Hide Commonly - Attacked WordPress Paths and Files so Hacker Bots Can’t Reach Them

Hide My WP Ghost by Squirrly

Hacker bots scan your site looking for WordPress vulnerabilities allowing them to break in and compromise data.

Most commonly, they will try to exploit specific plugins/themes vulnerabilities, WordPress core files, and hit entry points such as wp-admin, wp-login that accept a username and password.

Hide My WP Ghost helps protect your site against common attacks such as script&SQL injection, brute force, etc. by camouflaging those vulnerabilities (without physically changing any file or directory).

Works like an Invisibility Cloak that hides your WordPress from attackers.

Security Check : Uncover Security Issues and Fix them before they Become a Problem

Hide My WP Ghost by Squirrly

Most sites get compromised due to security vulnerabilities that could have easily been prevented by taking the right measures at the right time.

Hide My WP Ghost scans your entire site to indicate its current security level and uncover urgent security threats that leave your site exposed to different types of attacks.

All vulnerabilities will be highlighted in a dedicated report, alongside clear guidance on how you can correct each issue.

Many issues can be fixed with a single click right then and there.

Custom Security Features: Redirects, URL Mapping, Brute Force Protection

Hide My WP Ghost provides multiple options to customize security features based on your needs and preferences:

  • Create custom login & logout redirects based on user roles. Allows you to ensure that subscribers, for example, don’t have access to the admin URL for login.

  • Hide Admin Toolbar based on user roles.

  • Text Mapping: change classes names and IDs in the site’s source code (hides your WordPress footprint)

  • URL Mapping: useful for changing URLs containing plugin names which are a vulnerability that hacker bots exploit.

  • Brute force protection: limit login attempts, reCaptcha protection, IP address blacklisting, customize lockout message &duration

Security Monitoring: Exportable User Activity Logs & Email Alerts

Always-ON Security – This plugin by Squirrly monitors security-related events on your site 24 hours a day, 7 days a week.

  • Know who does what. See every action users take when logged in to your site (for the last 30 days)

  • Create instant email alerts. Get notified of security-related events like break-in attempts, unauthorized user actions (ex: deleting a post or plugin)

  • Know who’s trying to hack you. See all brute-force attacks for the last 30 Days + full details of the attacker (IP, username, date).

With this data at your fingertips, you can easily detect and defuse security vulnerabilities by taking timely preventive actions.

Easy to install and set-up.

Compatible with other security and cache plugins.

Lightweight – won’t slow down your site.

Works with WordPress Multisite.

Hide My WP Ghost Integrations:




Hide My WordPress Ghost is a product from the Squirrly Company.

Marketing, Design and Support for Hide My WP is done by our company. As well as features and Roadmap.

Frequently Asked Questions

Yes, the plugin works on WP Multisite and you will configure it for the entire network. The plugin also works with Apache, Nginx, IIS and LiteSpeed servers.

Yes, the plugin works on Nginx Server and you will be guided for the redirects and nginx.conf settings. The plugin also works with Apache, IIS and LiteSpeed servers.

Hiding the WordPress CMS shouldn’t affect the SEO from your website. 

All the main URLs should remain unchanged. Only the media URLs are changed once you change the paths.

Through sitemap.xml Google is informed about the new paths and the next time Google will verify the website, it will index the new media paths.

We have tested Hide My WP Ghost by Squirrly on many websites and we even noticed even a slight improvement when it comes to loading speed. (you can see an example for a test site here >>)

Make sure you follow the setup instructions correctly. Then you can use external WordPress detectors to verify that your site is 100% hidden. Here are some detectors we recommend using for this: 

If you discover that one of these WordPress Detectors can still find your website, please contact us via our support channels and we will check for any possible theme incompatibilities.

Hide My Wp Ghost was tested with all the popular cache plugins like:

  • W3 Total Cache
  • WP Super Cache
  • Wp Fastest Cache
  • WP-Rocket
  • LiteSpeed Cache
  • Autoptimize
  • Cache Enabler

If you use a cache plugin that is not in this list and you notice any compatibility issue, please contact us and we will work to make Hide My WP Ghost compatible with it.

Hide My WP Ghost adds a redirecting layer over WordPress to let you customize the old paths without physically changing them. 

It also gives you the possibility to disable access to the old paths for hackers and protect the WordPress plugins and themes.

All these changes will NOT affect the WordPress directory structure through FTP and it will not break it if you deactivate the plugin.

Hide My WP Ghost by Squirrly may look like a simple plugin but it’s a complex system behind it and a good firewall against Script Injection and Brute Force attacks.

Yes, starting with version 2.3.017, the Hide My WP Ghost plugin is compatible with Classiera Theme from Themeforest.

No. You need to have custom permalinks set on in Settings > Permalinks. You will get a notification in the Settings page if something is not set up right.

Yes, the Knowledge Base can be accessed at this link, and contains How-TosFAQsTutorials and everything else you need to learn more about how Hide My WP Ghost works – and how you can make the most out of it.

Hide My WordPress Ghost is a speed optimized plugin. The average loading time is 0.03s which is faster than 90% of the WordPress plugins.

We offer WordPress professional support that includes: bugs, site fixes, payment processing issues, potential website speed issues, and much more.

Yes, Hide My WP Ghost works well with other plugins. Hide My WordPress Ghost was tested with over 1,000 other themes and plugins to ensure compatibility. Hide My WordPress Ghost works with the most popular Cache Plugins, Security Plugins, CDN Plugins, as well as WordPress Themes.

Yes, the plugin can be used by everyone. No coding skills or advanced technical knowledge are required to be able to use this WordPress plugin to enhance the security of your site. Furthermore, you can choose from pre-built security levels and configure the plugin with just one click. 

Plus, there are many helpful resources (articles, tutorials, how-tos) that you can access right from the plugin so that you always know how to use every feature.  

As most of the attacks are made by bots and not by human hackers, there can be thousands of attacks per minute for each website, and as a site owner, you may not even be aware of it until it’s too late.

This is why you need a plugin like Hide My WP Ghost to provide oversight and enhance your WordPress site security.