WPSec
WordPress security scanner identifying vulnerabilities outdated plugins and misconfigurations
About this crawler
WPSec is a web crawler identified by the regular-expression pattern WPSec\/ in the User-Agent request header. It is categorised as scanner. Use the regex above to detect, log, allow, or block WPSec traffic in your web server, CDN edge rules, or robots.txt.
Block-rate · top 25k sites
No block-rate data for this crawler.
Technical details
- Name
- WPSec
- Pattern
WPSec\/- Tags
- scanner
- Reference
- https://wpsec.com/
- Added
- 2026/04/17
- Instances
- 1 known sample(s)
Sample User-Agent strings
Mozilla/5.0 (compatible; WPSec/1.3; +https://wpsec.com)
Block this crawler
robots.txt — disallow WPSec:
User-agent: WPSec
Disallow: /
Apache .htaccess — return 403:
RewriteEngine On
RewriteCond %{HTTP_USER_AGENT} WPSec\/ [NC]
RewriteRule .* - [F,L]
Nginx — return 403 inside a server block:
if ($http_user_agent ~* "WPSec\\/") {
return 403;
}
← back to all crawlers