Plugin Hider

Hide your WordPress Plugins

Strengthen Your Security.

Make Your WordPress Site a Harder Target

By masking the plugin’s identity, you effectively stop automated, path-based attacks before they even begin.

Frequently Asked Questions

What does this plugin do?

Plugin Hider improves your website’s security by obfuscating the directory names of your active plugins in the HTML source code. This makes it much more difficult for automated bots and attackers to scan your site for known plugin vulnerabilities. The plugin is a ‘set it and forget it’ solution that works automatically upon activation.

Does this plugin require .htaccess or specific Apache modules?

Yes, the plugin’s full functionality, including the redirection of assets like CSS and JavaScript files, relies on the Apache web server and the `mod_substitute` module being enabled. This is a very common module on most shared hosting environments. The plugin is designed to be safe, however. If your server does not have the `mod_substitute` module, you can’t use this plugin.

Will this break my site or cause a 500 Internal Server Error?

No. The plugin is specifically designed to prevent this. The `.htaccess` rules are wrapped in an `<IfModule mod_substitute.c>` conditional block. This means that if your server does not have the required module, it will safely ignore the rules, and the PHP code of the plugin will not run if the required .htaccess rules are not written. The plugin.will not cause your site to crash.

What if my host doesn’t use Apache, like Nginx?

The current version works only if you have an .htaccess file. Without .htaccess file you can’t use this plugin.

Will this slow down my site?

The performance impact of this plugin is zero.

How do I know if it’s working?

After activating the plugin, you can view the HTML source code of any page on your website (e.g., right-click and select “View Page Source”). You should see that your plugin’s directory names have been replaced with generic slugs like `p-0`, `p-1`, and so on.