All In One WordPress Security

iThemes Security Pro offers a full suite of options for users to protect their WordPress sites from all varieties of attacks.

The plugin provides several security-themed integrations with services like Google Authenticator and Authy and allows its users to enable two-factor authentication for their website.

iThemes prominently features its “Brute Force Protections Network” offering support from a large community of websites tracking malicious entities looking to attack user websites. Users can protect their site by enabling verified trusted devices and offering features to protect and limit the use of the user’s password.

iTheme’s premium plans start at a rate of $80 per year for one site.

Sucuri WordPress Security looks to provide a similar all-in-one plugin for users looking to enhance the security of their WordPress site.

The plugin offers many features including a full MalWare scanner and tools to check the integrity of users’ core files. Sucuri also comes with a wide array of tools for users who have already had their websites compromised.

The plugin’s website details a step-by-step plan for using Sucuri to clean up infected sites and regularly scans a user’s website for malware and other malicious entities.

Sucuri offers plans, including just the firewall and CDN plans starting at $9.99 per month. Their full package, which comes with scans and cleanup, starts at $199.99 per year.

MalCare’s main marketing point comes through the site’s touted Malware scanner. The plugin claims to feature “Instant WordPress Malware Removal” and touts that the site can clean up compromised WordPress sites in less than 60 seconds.

Malware scanning is not a feature offered by All In One WP Security, instead they rely on hardening your site, whereas with MalCare, the selling point is the malware scanning and removal functionality.

MalCare’s scanner does not feature significant load on a user’s server and should not slow down the user’s website.

The plugin features daily automatic checks and can completely scan its user’s websites, including their files and the database.

Higher-priced plans also include WordPress backups, allowing users to create periodic backup versions if they need to restore their site to a previous build. MalCare’s premium options start at $99 per year for one site and offers several different add-ons separate from the base plans.

Wordfence focuses on providing its users with an enhanced level of security for their site, focusing on its endpoint firewall.

Wordfence’s firewall differs from that of other plugins in that it runs from a server’s endpoint, featuring deep integration with WordPress to protect a user’s site. Along with a full security scanner that can check files, themes, and plugins, the plugin also has a regularly updated “Threat Defense Feed”.

Wordfence’s “Threat Defense Feed” features a team of security experts that constantly updates the plugin’s built-in IP blocklist and updates the firewall’s custom ruleset to protect users from newly developing attacks.

This kind of constantly updated feed of malware signatures & IP blocklist is not something you'll get with All In One WP Security for the simple fact that All In One is a free plugin, so they wouldn't have the resources to support something like that.

Wordfence sells its premium plans through licenses charging $99 per year for one license, offering discounts for signing up for multiple licenses or multiple years.