BulletProof Security is a security WordPress plugin that protects your website from XSS, CSRF, Base64_encode and SQL Injection hacking attempts.
The plugin uses htaccess to protect a lot of important files. With one click you can protect your wp-config.php, bb-config.php, php.ini, php5.ini, install.php and readme.html files.
There are 10 sections in the settings area of Bulletproof Security however you shouldn’t have any major problems with setting it up as everything is controlled by simple on/off switches. For example, with one click you can protect your root directory or your wp-admin directory.
The security status area gives you an overview of the security of your website. It highlights the file and folder permissions of important areas of your website and suggests a safer alternative.
It also gives you warnings if important files such as install.php are not protected by .htaccess and recommend you change your administration login if you are still using the default admin username.
I haven’t used Bulletproof Security on a live website as yet though I was impressed with many of it’s features when I tested it. The security of your website is not something you should take lightly so I recommend trying it out if only to check the status of your file permissions etc. Recommended.