A: Yes, the premium version of the Security Ninja for MainWP addon is included with both Tier 3 and Tier 4 of the AppSumo offer.
You only need one license to run the premium addon on your MainWP server (the site where MainWP is installed). For Tier 4, you get unlimited licenses for the Security Ninja plugin itself, but the MainWP addon only needs to be installed and activated on your MainWP dashboard site - not on every child site. So, with Tier 4, you're covered for all your websites, lifetime.
Tier 1 – "Starter" (1 site) Tier 2 – (no specific name listed) – 5 websites Tier 3 – "Professional" – 20 websites (the website says 25, but the AppSumo deal is for 20) Tier 4 – We do not have a public sales link for the unlimited version. The unlimited tier is not usually offered for sale outside of special deals like this.
Thanks for your question. WP Security Ninja does not include options to customize the WordPress login screen, such as adding your logo or changing the background. For that, you'd need a separate plugin or some custom code.
However, on Tier 3 and Tier 4 plans, you can white label the plugin itself - removing our branding and replacing it with your own inside the WordPress admin.
Q: Can you selectively enable features in WP Security Ninja?
Is it possible to install WP Security Ninja and selectively enable the elements of the plugin you want to use? For example, could I install and use it solely for Two-factor Authentication?
Great question! Yes, absolutely. You can selectively enable the features you want to use in WP Security Ninja.
When you first install the plugin, you can skip the setup wizard. After that, simply navigate to Firewall -> Login Protection in your WordPress dashboard, and you’ll find the option to enable Two-Factor Authentication (2FA) there, along with other login security features. You can then enable or disable other modules as you see fit.
Q: How to whitelist a REST API route from the local firewall?
Hello,
I'm a PRO user with 5 licenses. Your plugin blocks API requests from the AppSumo tool Videotoblog.ai. The only way it works is by completely deactivating Security Ninja.
I have confirmed the block comes from the local firewall ("Block Suspicious Requests"), NOT from the Cloud Firewall.
Videotoblog's support says I need to whitelist the API route wp-json/wp/v2/posts.
My question is: How can I add this specific route to the local firewall's exclusion list?
I can't find a URL exclusion option in the UI, IP whitelisting is not possible (they use dynamic IPs), and the Event Log does not have an "allow" feature for these blocks.
A: Thanks so much for reaching out and for being a PRO user! We're sorry to hear you're running into trouble with Videotoblog.ai, but the good news is that Security Ninja gives you the flexibility to fine-tune your firewall for exactly these situations.
Here's how you can whitelist a specific REST API route without turning off the entire firewall:
- Go to the "Events" tab in Security Ninja and locate one of the blocked requests from Videotoblog.ai. - Click the "Details" tab for that event. What we're looking for is the specific "rule" that was triggered and caused the block. - Once you know which rule is responsible, you can use a custom code snippet to allow just that traffic, while keeping all other protections in place.
We have a detailed guide and code examples here: https://wpsecurityninja.com/docs/filters-hooks/customizing-firewall-filter-rules/
In a recent update, we made it even easier by giving each rule a unique name, so you can target exactly the one you want to adjust.
If you need help setting up the snippet, just email us at support@wpsecurityninja.com with the name of the rule, and we'll be happy to help you get it working for your site.
You can also turn off the "Block Suspicious Requests" option entirely, but we recommend just disabling the specific rule that's causing issues. This way, you keep your site protected while letting Videotoblog.ai work as intended.
We have plans to make a nice interface for the firewall rules that would allow to easily customize and tweak the firewall rules, but that is scheduled for a later release.
Q: MainWP
i have read a couple of posts regarding MainWP
i was also looking at this https://wpsecurityninja.com/mainwp/
so , is the PREMIUM addon included in the AppSumo offer ? if so , lifetime fo all websites in case of Tier 4 for example ?
Lars_Koudal
Jul 14, 2025A: Yes, the premium version of the Security Ninja for MainWP addon is included with both Tier 3 and Tier 4 of the AppSumo offer.
You only need one license to run the premium addon on your MainWP server (the site where MainWP is installed). For Tier 4, you get unlimited licenses for the Security Ninja plugin itself, but the MainWP addon only needs to be installed and activated on your MainWP dashboard site - not on every child site. So, with Tier 4, you're covered for all your websites, lifetime.
Share WP Security Ninja
Q: Tier included in this team
Hello team, what tier is included in this deal "starter, team, business, professional"?
Lars_Koudal
Jul 14, 2025A: Hello, thank you for asking!
Tier 1 – "Starter" (1 site)
Tier 2 – (no specific name listed) – 5 websites
Tier 3 – "Professional" – 20 websites (the website says 25, but the AppSumo deal is for 20)
Tier 4 – We do not have a public sales link for the unlimited version. The unlimited tier is not usually offered for sale outside of special deals like this.
Share WP Security Ninja
Q: Customize Login
Is it possible to customize the Wordpress login screen and add my logo, change the background color, etc.?
Lars_Koudal
Jul 13, 2025A: Hello Waldemar,
Thanks for your question. WP Security Ninja does not include options to customize the WordPress login screen, such as adding your logo or changing the background. For that, you'd need a separate plugin or some custom code.
However, on Tier 3 and Tier 4 plans, you can white label the plugin itself - removing our branding and replacing it with your own inside the WordPress admin.
Let us know if you have any other questions!
Share WP Security Ninja
Q: Can you selectively enable features in WP Security Ninja?
Is it possible to install WP Security Ninja and selectively enable the elements of the plugin you want to use? For example, could I install and use it solely for Two-factor Authentication?
Lars_Koudal
Jul 12, 2025A: Hi there,
Great question! Yes, absolutely. You can selectively enable the features you want to use in WP Security Ninja.
When you first install the plugin, you can skip the setup wizard. After that, simply navigate to Firewall -> Login Protection in your WordPress dashboard, and you’ll find the option to enable Two-Factor Authentication (2FA) there, along with other login security features. You can then enable or disable other modules as you see fit.
Hope this helps!
Share WP Security Ninja
Q: How to whitelist a REST API route from the local firewall?
Hello,
I'm a PRO user with 5 licenses. Your plugin blocks API requests from the AppSumo tool Videotoblog.ai. The only way it works is by completely deactivating Security Ninja.
I have confirmed the block comes from the local firewall ("Block Suspicious Requests"), NOT from the Cloud Firewall.
Videotoblog's support says I need to whitelist the API route wp-json/wp/v2/posts.
My question is: How can I add this specific route to the local firewall's exclusion list?
I can't find a URL exclusion option in the UI, IP whitelisting is not possible (they use dynamic IPs), and the Event Log does not have an "allow" feature for these blocks.
Your help is appreciated.
Lars_Koudal
Jul 12, 2025A: Thanks so much for reaching out and for being a PRO user! We're sorry to hear you're running into trouble with Videotoblog.ai, but the good news is that Security Ninja gives you the flexibility to fine-tune your firewall for exactly these situations.
Here's how you can whitelist a specific REST API route without turning off the entire firewall:
- Go to the "Events" tab in Security Ninja and locate one of the blocked requests from Videotoblog.ai.
- Click the "Details" tab for that event. What we're looking for is the specific "rule" that was triggered and caused the block.
- Once you know which rule is responsible, you can use a custom code snippet to allow just that traffic, while keeping all other protections in place.
We have a detailed guide and code examples here: https://wpsecurityninja.com/docs/filters-hooks/customizing-firewall-filter-rules/
In a recent update, we made it even easier by giving each rule a unique name, so you can target exactly the one you want to adjust.
If you need help setting up the snippet, just email us at support@wpsecurityninja.com with the name of the rule, and we'll be happy to help you get it working for your site.
You can also turn off the "Block Suspicious Requests" option entirely, but we recommend just disabling the specific rule that's causing issues. This way, you keep your site protected while letting Videotoblog.ai work as intended.
We have plans to make a nice interface for the firewall rules that would allow to easily customize and tweak the firewall rules, but that is scheduled for a later release.
Let us know if you need any more help.
Share WP Security Ninja