Multi-site command
Manage every site from one console. Bulk plugin and theme updates, plus signed remote actions — across 10 or 10,000 sites.
Security monitoring, verified cloud backups, and AI-explained fixes — for one WordPress site or two hundred. Triage threats and push fixes from one dashboard.
Manage every site from one console. Bulk plugin and theme updates, plus signed remote actions — across 10 or 10,000 sites.
Real-time vulnerability data on core, plugins, and themes. Patch suggestions ranked by severity and exploit likelihood.
Short, prioritized alerts with clear next steps. Email, Slack, PagerDuty, and webhooks. No noise. No false "critical" fatigue. New: protection plans add AI Advisory — a privacy-bounded second opinion on selected malware findings (it never replaces the scanner).
Every Central → site message is HMAC-signed and verified. Trigger scans, deploy rules, recover sites — without exposing keys.
Schedule cloud backups to PowerSEC-managed storage — or your own S3-compatible bucket on paid plans. Track sizes, restore points, and SHA-256 verification — all in one timeline.
Every privileged action is HMAC-signed and logged with actor, action, and result. Stream alerts to Slack, PagerDuty, or your SIEM via webhooks.
The fleet view ranks every site by score, surfaces sync drift, and shows last 12 days of traffic — so you triage in 10 seconds, not 10 tabs.
Read the docsEvery alert opens with the file path, CVE, exploit signature, and three suggested actions. Hit ⌘/Ctrl+1, the rule deploys to all 4 sites, and the timeline gets the receipt.
Read the docs$ powersec rules deploy --scope=fleet ✓ deployed to 4 sites · 1.7s ✓ patch suggested: 3.18.2 → 3.21.4
Integrity-verified snapshots in PowerSEC-managed cloud storage — or your own S3 bucket on paid plans. Every restore point is SHA-256–checked after upload and re-verified in storage, so "we have backups" isn't a hope, it's a checkbox.
Read the docsOne WordPress site or two hundred — the flow is the same. Start with a free, passive snapshot; connect when you’re ready.
A passive external read of any WordPress site in under a minute — no login, no exploits, no changes.
Install PowerSEC and link the site to Central for a full internal scan and cloud backups.
Continuous scanning, firewall & hardening, and verified cloud backups with restore points.
AI explains findings in plain language and prioritises what to fix — you stay in control of every action.
Every privileged action is signed and audited. Per-site keys are scoped and revocable, and each request carries only a one-time HMAC signature — never the signing secret.
Per-site telemetry and remote keys — scoped, rotatable, and revocable from Central.
HMAC-signed over a one-time nonce; every privileged change leaves a receipt.
SHA-256-verified after upload and pulled only through short-lived, signed URLs — never a public, guessable location.
You only pay for the protection each site actually needs. Start any site free.
Basic security scanning and manual local backups (database, files, or full) with restore for a single site.
Start freeScheduled cloud backups, full restore, and verification for a single site. Includes 25 GB cloud storage and 7 restore points. Free-tier monitoring included.
ChooseActive scan, firewall, hardening, alerts, observability, incident response, and 25 GB included cloud backup storage with 7 restore points.
ChooseEverything in Pro Protection with cloud backup upgraded to 100 GB storage and 14 restore points for larger sites.
ChooseFor studios and MSPs: bundles 5 protected sites with priority support and a shared cloud backup pool. Sales-assisted onboarding — contact sales to get set up (expand beyond 5 sites on request).
Contact salesConnect your first site in under 4 minutes. Free for 10 sites, no card.