How it works
No servers to configure. No security expertise needed.
Account
Takes 30 seconds
Sign up with your email address. No payment details required at signup. Verify your email and you're in, free plan activated instantly.
Setup
Under a minute
Enter your site URL. We generate a unique API key. This is how your WordPress site securely authenticates with our scanner.
Your API key
smwp_a9f3k2m8...d8e1
Plugin
One-time only
Install the free ScanMyWP plugin on your WordPress site. Go to Settings → ScanMyWP, paste your API key, and click Save. Your first scan starts automatically.
Results
Within seconds
We check every plugin, theme, and WordPress core version against our security database. Each finding is ranked by severity so you know exactly what to fix first.
Autopilot
ProOn the Pro plan, every connected site is scanned automatically at 7:00 AM every day. New vulnerabilities are published constantly. Daily scanning means you are never more than 24 hours behind. If something critical is found, you get an email immediately.
No. The plugin only sends your WordPress version, PHP version, site URL, and a list of plugin and theme slugs with their versions. No passwords, database credentials, or content is ever sent.
We maintain and continuously update our own security intelligence database. Every scan is checked against the latest known threats for WordPress plugins, themes, and core.
Our security database is updated continuously. Results are always fresh so you are protected against the latest discovered vulnerabilities.
The free plan supports 1 site with 10 lifetime scans. The Pro plan ($10/month) supports up to 15 sites with unlimited scans.
Get started
Free plan available. No credit card required.