I’ve written before about the Web ARX Security plugin for WordPress, which I’m a big fan of. In fact it’s even better now!
Previously it was only available for WordPress, but now you can apply it to any PHP-based website, so it works with Joomla, Drupal and Magento as well.
You can also configure the Web Application Firewall (WAF) with a great level of detail, adding in your own rules to prevent against known attack vectors.
Personally I’m a fan of moving the WP admin page so that it gets less attention for automated bots, as well as adding reCaptcha to the login page, both easy to do with Web ARX.
I don’t tend to use the security headers option anymore, as I prefer to use my own WordPress plugins for this, as they give greater granularity.
If you want to try out the Web ARX Security plugin (and you really should!) then if you sign up before 1st June 2019 and use the code ASFP032 you’ll get 50% for the first 6 months!