ASTRA Security Review: a 5-month Experience

At its core, ASTRA security is a WordPress security plugin that has an intelligent firewall and a malware scanner.

astra security reviewAre you worried that your website might get infected and your hard work ruined? Well, many website owners don’t know their sites have malware. And sometimes they learn it from their own readers. Scary, isn’t it?

If you are not so confident of your hosting security and you want to add another level of protection to your site, one way of doing it is by using an excellent WordPress security plugin. We are currently using ASTRA Security for this website. But is ASTRA the web security you need? Find out everything you need to know in this ASTRA Security review.

If you are using the WordPress platform for your site, your hosting should be at least an entry-level managed WordPress hosting. If you don’t, you’ll be vulnerable to online threats even right after you upload your website. But if you are still using a shared host, you need to secure your site right away because with it, you have to do all the work to secure your site. And if it gets a malware, you are on your own to clean it up.

But your site will be much more secure having a managed WordPress host. Even at its entry-level features, you will have hosting tools that can help secure your site. And your account will be isolated from the rest of the accounts sharing the same machine with you. But a premium managed WordPress hosting will do everything for you – from securing your site, optimizing the speed, and removing malware if your site gets infected. Although a fully managed WordPress host may come with a price.

astra security reviewASTRA Security Review

ASTRA Security is a complete website security suite that you can add to protect your site through a WordPress plugin. It has a loyal following and has managed to get almost perfect stars in Trustpilot, a world renowned review platform that is free and open to all. ASTRA Security also scored excellent in Capterra, a reputable software reviews provider.

It is lightweight on your dashboard and loads fast along with your site. But you won’t see any report of threats blocked and scan results on your dashboard. Because you’ll find it in the ASTRA website. You cannot change the security settings from inside your WordPress dashboard. But what you will see are only 4 colorful buttons – Dashboard, Threats, Settings, and Activity – all of them lead to the ASTRA website. That’s super lightweight!

While we hope there is much to see about our site’s activity in the ASTRA tab in our WordPress dashboard, it might eat up some hosting resources that can slow down our site. So ASTRA puts all its reports in our account in their website to prevent the plugin from adding more weight to our site.

astra security review
This is what ASTRA looks like in your WordPress Dashboard.

ASTRA Website Security

Here are the complete features of ASTRA website security:

Dashboard Tab

astra website security
Astra Dashboard
astra website security
Astra Dashboard

The ASTRA Dashboard tab shows a summary of attacks against your website (during the current week) in the form of a line graph. It shows the most attacked areas on your website and the list of countries where the attacks come from.

ASTRA uses the Dashboard tab to show the tests it performs and the access it allows to pass through their system, the number of bad bots it has stopped, the Cross Site Scripting (XSS) attacks it has stopped, the number of SQLi attacks it has stopped, and the current status of your website on web search engines.

Use this Link to Get ASTRA Security »

[themify_hr color=”light-gray” border_width=”5px”]

Threats Tab

security astra
Threats Tab
security astra
Threats Tab
security astra
Threats Tab

The Threats tab shows a complete list of threats as they happen in real time. It shows the country where the attack originates, the exact time when the threat happened, the attacking IP, the type of attack, and status whether the security was successful in stopping it. The Threats tab allows you to block the IP or country right away.

Through the Threats tab, you can add a custom rule such as blocking a country and IP. Here, you can block a country with high hacking activity.

Give Your Site a Gift: Get ASTRA Security »

[themify_hr color=”light-gray” border_width=”5px”]

Malware Scan Tab

astra security systems
Malware Scan
astra web security
Astra Embedded Seal

The Malware Scan tab is one of the most important functions of the ASTRA Security. This powerful tool scans all your website files on a daily basis. And it reports the issues found. In case you get infected, you can request for a manual malware cleanup right away. The cleanup process is included in the subscription. You just need to provide your server credentials so the ASTRA experts can search and remove the malware.

The Malware Scan result can be shown on your website, through an embedded ASTRA Seal, to gain your reader’s trust so they’ll be confident in navigating through your pages knowing that you are secure.

Give ASTRA Security a Try: It Will Instantly Protect Your Site »

[themify_hr color=”light-gray” border_width=”5px”]

Login Protection

The Login Protection tab checks all successful and stopped login activities for your website. It shows details such as country, platform, browser, and URL used to login to your website. You will also see the time of each login activity, the IP and username used, and the status whether the login was successful or stopped.

You can have a look at this tab on a daily basis to make sure no one has logged in to your system except for authorized users only.

Get ASTRA Security Now »

astra wordpress security
Login Protection

[themify_hr color=”light-gray” border_width=”5px”]

Settings Tab

astra wordpress security
Settings Tab
astra wordpress security
Settings Tab

The Settings tab is a major component of your website security. Here you can double check that ASTRA’s protection is turned on, ASTRA mode is blocking, and the plugin version is up-to-date.

By default, the security level is set to medium but you can change it to High depending on your desired level of security. Using the Settings tab, you can get code to embed ASTRA’s Seal of protection to show your readers you are secure.

ASTRA has a setting to allow or disallow foreign characters from which the default setting is OFF which means the system won’t allow foreign characters. Then you can set your server credentials to allow the Astra experts to use them in case your site gets infected. They need your server credentials for the cleanup process.

Get ASTRA Security now »

[themify_hr color=”light-gray” border_width=”5px”]

Hub Tab

astra web security
Hub Tab

The Hub tab allows you to run over 140 tests to check the health of your website. These thorough testings may incur additional payments but will attempt ensure a tip-top health for your website.

This tab also allows you to set up a widget for GDPR consent which is required in compliance with the EU General Data Protection Regulation for those websites who use cookies.

ASTRA has another WordPress plugin, the WP Hardening, which has a fix to 19+ WordPress security issues. You can get the link to that plugin using the Hub tab.

Final Thoughts

ASTRA Security is a solid WordPress security that has everything you need. It is lightweight and loads fast along with your website to give you an immediate protection. It has an impressive firewall, scans your site daily, and protects vulnerable parts of your site. It is a big plus, if you already have a secure web host, because adding another level of security will make your site almost impossible to infiltrate.

If you decide to use ASTRA Security, you must also install another important plugin, the WP Hardening, which is a one-click tool to fix 19+ WordPress security issues on your site. WP Hardening optimizes Admin and API security, disables information disclosure, removes meta information, and hides directory listing of WP Includes.

ASTRA Security is highly recommended even for a fully managed WordPress web host. Although we think that it is only best for shared hosting up to entry-level managed WordPress hosting since a fully managed WordPress hosting will already have its robust firewall, daily malware scan, and cleanup in case your site becomes infected.

You may also like:

Disclosure: Getastra belongs to the top WordPress security companies and we are recommending their product (and using our affiliate link). As an affiliate, we earn from qualifying purchases at no cost to you. We are an independent reviewer and our opinion is not influenced by anyone. Want to know how we’re funded?