Description

Spam Master was born back in 2012 out of need to protect our website against constant malicious spam registrations and comments that affect the majority of wordpress websites. We did it the TechGasp way… coded a brand new, clean and fast plugin that will make your professional wordpress website safe and clean. Since then Spam Master grew to be one of the top 5 biggest online threats databases. protecting against millions of ip’s, ip ranges, emails, domains and spam words

Spam Master protects WordPress based websites from millions of known spam emails, domains, ip’s and words by blocking user registrations, comments, contact forms, etc. Spam Master uses RBL technology (real time block lists) constantly being updated.

The problem facing spam targeted wordpress blogs is that most of the spam registrations or comments are done by a mixture of “bots” robots and human spamming. Most of the spam registration systems fail including captcha precisely because the human factor kicks in during registration, also these captcha systems “push away” real user registrations and can injure your professional, commercial, sales based website income.

The plugin comes packed with automated Spam Learning function that will make your wordpress blog a fighting spam enforcer by providing registration ip’s and emails for analysis and online spam lists inclusion.

Spam Master is a solution for demanding users and websites who like us “linux logging and error free manics” like to have full control over what’s going on with their website. Be prepared for professional logging of all actions, reports (daily, weekly) and analytics (statistical data). We packed into spam master. Protection Level, Total Website Users, Total Spam Users Blocked, Total Number of Comments, Total Number of Spam Blocked Comments, Total Number of Approved Comments, Total Number of Pending Comments, Total Number of Trashed Comments, Total Number of Threats you are Protected from, Spam Learning, Status of RBL Spam Servers, User Registrations List with (user id, registration date, user status, name, username, and email) and Comments List with (comment date, comment author, author email, author website, comment content, comment status).

Fast loading, Spam Master is modular… it only loads what is needed to keep your website secure and clean.

Makes no use of Javascript or Ajax to keep your website fast and conflicts free

Real Time Block Lists

Spam Master scans logins, registrations, comments and contacts via online real time block lists with millions of threats already listed and constantly being maintained and updated.

Website Firewall

With spam Firewall, Spam Master blocks malicious activity before it even reaches your website. By activating Spam Master Firewall your website automatically gets protected against dangerous exploits like HTTP and HTTPS DDoS (denial-of-service), SQL injections, brute force attacks and many others threats.

Spam Buffer

Buffer technology greatly reduces server resources like cpu, memory and bandwidth by doing fast local machine checks. Also prevents major attacks like flooding, DoS , etc. via Spam Master Firewall.

Whitelist Exemptions

Spam Buffer Whitelisting excludes spam checks from safe Emails or Ip’s, it also removes these safe Emails and Ip’s from your local Spam Buffer.

What is Spam Master Learning?

The module comes packed with automated Spam Learning function that will make your website a fighting spam enforcer by providing registration ip’s and emails for analysis and spam lists inclusion.

What is Spam Master Alert Level?

It’s an easy and interactive way for you to know if your website is being targeted by spammers and the level of intensity or danger of this targeting. The update is done daily and automatically via RBL (real-time blacklist) servers sync. The alert levels range from 0 (low) to 3 (high) intensities.

Spam Probability?

Spam Master includes Spam Activity Probability, in conjunction with Alert Level, Spam Master advanced detection heuristic analytics will provide you with an approximated percentage of all spam activity in your website.

Google reCaptcha V2

Spam Master includes google re-Captcha that uses an advanced risk analysis engine and adaptive CAPTCHAs to keep automated software from engaging in abusive activities on your site, it does this while letting your valid users pass through with ease. Spam Master google reCaptcha can be optionally and individually activated on login, registration, comment and contact pages.

Honeypot

Spam Master includes honeypot traps set to detect, deflect, and counteract attempts at unauthorized use of your website, a honeypot consists of data that appears to be a legitimate part of the site, but is actually isolated and monitored, and that seems to contain information or a resource of value to attackers, who are then blocked, colloquially known as “baiting” a suspect. Spam Master honeypot traps can be optionally and individually activated on login, registration, comment and contact pages.

Logging & Clean-Up

As good linux freaks we’ve implemented into Spam Master an healthy “obsessive compulsive” logging. Everything related to security gets logged and is accessible via the module Logs & Statistics page. On the other hand, in the module Protection Tools page we’ve also implemented full control over all logs retention time to keep your website fast & clean.

Privacy Policy and GDPR

We are an European Union company that fully complies with GDPR. We take a step further as described in our privacy policy, No data is shared with third parties operators.

MORE FEATURES

Protects WordPress from User Registrations (spamming bots, users or both)
Protects WordPress Comments from (spamming bots, users or both)
Protects WordPress Pages and Posts from malicious trackbacks (spamming bots, users or both)
Spam Master is Contact Form 7 Ready. Uses pro-active scan of your email contact form before triggering any mail function
Spam Master is Woocommerce Ready. Eliminates all credit card fraud by preventing known sources of spam from registering via woocommerce registration. It also includes wooommerce spam signatures.
Spam Master marks as spam comments wrongly cleared as safe by akismet, check screenshots
Spam Master checks for emails, domains, ip’s, ip ranges and spam words
Uses real time scan from millions of known spamming sources (effectively blocks those nasty hotmail, live, msn and outlook registrations)
Professional logging of all actions regarding security
Includes Analytics, Statistical information to keep your life easy
Spam Master Learning makes your WordPress an Anti-Spam enforcer by collecting data for analysis
Spam Master allows you to whitelist emails and ip’s to be exempt from spam checks
Spam Master allows you to customize the frontend blocked registration message
Spam Master allows you to hide the website field from your theme comments form
Spam Master includes Character Blocking. Option to individually activate cyrillic, chinese, asian, arabic characters, immediately blocks comments or contact form 7 messages that use these characters
Spam Master includes the famous Google reCAPTCHA and Invisible reCAPTCHA on registration, login or comments pages and posts
Spam Master includes Honeypot fields for registration, login or comments forms
Spam Master includes Firewall technology, blocking misfits before they even enter your website
Spam Master includes Signatures
Spam Master includes a brand new automatic Threat Alert Level, it’s an easy and interactive way for you to know if your website is being targeted by spammers and the level of intensity or danger of this targeting
Spam Master includes Spam Activity Probability, in conjunction with the Alert Level, Spam Master advanced detection heuristic analytics will provide you with an approximated percentage of all activity in your website
Spam Master includes a bunch of useful widgets and safe website seal for commerce and sales
Spam Master includes several optional email reports and warnings to keep you informed
Spam Master is PHP 7 ready
Spam Master is IPv6 ready

Free Trial then $9 per year

Spam Master is a free plugin which works with the premium non-free Real Time Block List Servers (RBLs). This plugin provides a service software as a service wiki.

Take a free Tour Trial License
or,
get a full RBL License for peanuts a year.

ONLINE DEMO

ONLINE TOOLS

More High Quality Plugins?

For professional wordpress websites
Tested for fast page load times and SEO
Errors and conflicts free. NO JAVASCRIPT or AJAX
Click Here

Screenshots

Main Plugin Menu
Top Spam Countries - Statistics
Settings Page
Statistics Page
Firewall Statistics
Firewall Block Page
WordPress Registration. Spam Master with re-CAPTCHA plus Honeypot traps
Spam Master Marking Comment as SPAM from Registered User, Spam Master marking Comment as SPAM after akismet cleared it
Top 10 Threats - Statistics

Installation

Use the WordPress Installer, Updater.
Activate in the “Plugins” admin panel.
Visit the “Plugin Page Menu | Spam Master” to configure settings.
Spam Master Documentation

FAQ

Issues RBL License

Please update to latest version of Spam Master
Patiently wait for your license to be activate and replicated by RBL Servers

I DON’T HAVE A LICENSE

Get a license here for peanuts, $8 year License
or
take a free tour Trial License

Need More Help

Reviews

Abanys-Concept 26 May 2020

It is really useless: a.) There are still a lot of spam registrations on my site - b.) In addition, it blocks some real registrations. No need to pay a subscription for this.

makas 19 May 2019

Even in trial it does not work properly, but after trial period our site got bombarded with porn spam. Totally useless and I hate your half window size "expired trial" warning.

bonniesitessolutions 05 Aprily 2019

Not professional at all! While they offer a "free" trial (which you can only find out about by reading the wordy description trying to sell you on it but showing no price, almost all the way to the bottom!), it's not really free, because you have to give them your email to register before you can even use it. no thanks. I get enough spam. If you are dumb enough to go to their site to see what the price is, good luck finding it in the wordier page the link takes you to. There are buttons to buy it, but no prices at all. So click on the button and find it is 9 Euros for 1 site license. 2-5 sites is 31 Euros, and even though there is a button on the main page for unlimited sites, there is no price nor option for such. btw, on their site they have a shortcode showing, so that gives you an idea of how good their coding is.... "[purchase_link id=”11490″ text=”Add to Cart” style=”button” color=”orange”]"

danmaor 27 May 2018

The plugin works like a charm and is the only one which I found which works seamlessly with AMP (AMPforWP with the Comments and the Contact Form 7 Extensions) and can be used compatibly with the European data protection laws (GDPR). In detail: 1) It works. The plugin actually blocks off spam from my site. 2) Registration - you have to obtain an API key from the website in order to get access, and register the API key in the settings. The pre-delivered API key which appears in the settings right after installation does not work and produces a "level 3" error. In order to register correctly, clear your cache before and after registering the correct API key. 3) What the plugin actually does is to allow some settings and provide access to third party tools, namely a real-time blocking list, and inserts (if set in the settings) Google reCAPTCHA. So, in that respect, it is quite comparable to Akismet, which also does not process content on-site, but remotely in order to determine whether something is malicious. It goes further than Akismet, as it also contains a firewall function and allows to block submissions with Chinese, Arabic, or Cyrillic characters. It also allows to define a number of seconds during which the page has to be loaded before a comment can be submitted. 4) The plugin indeed does not insert any javascript or Ajax, so it can hardly be recognized in code when activated (it sets a footprint by inserting "Website Protected by Spam Master" into the commentary form. Of course, this can be erased by modifying the code of the plugin. 5) Because the plugin does not insert HTML, javascript or Ajax, it is compatible to the AMP plugin AMPforWP (I did not test it with others), without producing code which is not AMP-compatible; different to the plugins "Honeypot for Contact Forms 7" or "Antispam Bee", which cannot be used on AMP without producing page output which is not AMP compatible or produces a form with a field titled "Leave this field blank" on AMP pages. 6) For those who are located in the EU or otherwise data protection aware: It is true that data are transferred to a company called Techgasp, but this company is located in Portugal and thus in the EU. Therefore, all the complicated requirements which have to be met when transferring data into the USA (privacy shield "membership" of the company the data are transferred to and/or Standard Contractual Clauses) are not necessary. As the data are not forwarded for "processing on behalf of a controller" (processing is not done on instruction), an explicit agreement under Article 28 GDPR is not required (my legal opinion). 7) I do not see why it is subject to criticism that a small sum (for European dimensions) has to be annually paid for access to the databases. The plugin enables access to those databases for processing. A PayPal plugin enables access to services of PayPal (which are not free), and the Akismet plugin enables access to the Akismet services, which are also not free (in many cases). 8) If anything seems to fail, clear your cache first. 9) I am not affiliated or otherwise connected to the plugin author or his company. In addition: Suggestion for the privacy statement Processing of Form Entries by a Third Party for Spam Prevention Data which are entered into forms on this website, as well as the IP address, from which those data are transmitted to this website, are transmitted partly or in whole to Tangente da Sabedoria, Unipessoal Lda., Rua Cova da Castelhana, Viv Maria Adelaide, 2765-408 Estoril, Portugal, hereafter called: "Techgasp". Purpose of the processing is to prevent spam to be displayed or received. Spam are unwanted, mostly automatically created bulk messages with unrelated marketing or other unsuitable content. Legal basis for the processing is Article 6 Section 1 Sentence 1 lit. f of Regulation (EU) 2016/679. The legitimate interest which is pursued by this processing is enabling the automated operation of the website, from which spam can only be kept away with unbearable efforts when not using automated checks, as well as avoiding an unbearable load of the inbox which is used for for contact requests submitted through the contact forms on this website. Techgasp use the data under their own responsibility and, according to their statements, not for sale to third parties, but only for the provision of own technical services, for meeting legal requirements, to enhance own services, and to protect own rights. As soon as the data are not required any more for those purposes, Techgasp delete them, according to their statements. Further details can be taken from the privacy notice of Techgasp (provide a link). I also included a statement on automated decision-making in my privacy policy. Automated decision-making is enabled on this website within the context of the functions to submit user comments and for submissions in contact forms. An automated filtering system will check comments and messages received for typical features of spam (unwanted, mostly automatically created bulk messages with unrelated marketing or other unsuitable content). The corresponding filter techniques are explained here [insert a link to the page explaining the plugin]. The scope of the use of the system and the intended impact on the data subject is that it might prevent them from posting a comment on the website or from communicating via the contact form, and that this automated decision will be stored together with the commentary data or comment form data (user input, IP address) and be used for future automatic decision-making in connection with the publication of user comments or the approval of the use of the contact form. The blockage of individual user comments, which is deliberately caused by the use of this procedure, would take away a possibility of publicly expressing an opinion; however, except for special cases, no one has an enforceable right to publish his or her opinion exactly on this website. Blocking the use of the contact form would prevent the use of this feature, but would not affect the possibility to contact the provider of this website through other means, such as e-mail or mail, and thus would not remove the possibility of contacting the provider at all.

discoveryoganidra 06 Novambra 2018

Poor Support. Confusing registration. I paid 2 weeks ago and still don't have the registration working. No one replied to my last email. No they don't provide Professional Priority support. Wish I'd gone with another company. Too difficult and not enough help.Also doesn't work - I still have over 7000 pages of spam. I will not register again!

Vortex11 15 Febroary 2017

I find it hard to believe this plugin isn't violating the WordPress rules. There are ZERO function that work without an active license. They will give you a trial license that is only good for 7 days. I purposely invalidated the license to see what, if any functions work without it and it seems that they are ALL not functioning. Trial Ware is supposed to be against the rules. To top it all off, there are a few reports of the plugin author being amazingly rude and nasty to plugin users. He even called a guy "retarded" here - https://wordpress.org/support/topic/im-convinced-its-a-scam-to-make-you-buy-the-full-version/ I would advise anyone looking for SPAM software to move on to the next option. This plugin seems like a huge scam, is most likely violating the rules AND the author likes to insult and belittle people.

Read all 63 reviews

Contributors & Developers

“Spam Master” is open source software. The following people have contributed to this plugin.

TechGasp

Translate “Spam Master” into your language.

Interested in development?

Browse the code, check out the SVN repository, or subscribe to the development log by RSS.

Changelog

6.2.0

Upgrade to this version is highly advisable
Better implementation of nasty bots detection that consume a lot of server resources
Fixing honeypot contact form function name and true typo
Moving Proxies and firewall function to separate page
Adding Honeypot, reCaptcha to logs clean-up schedules
Removing excessive logging
Adding new uninstall options

6.1.9

Fixing honeypot spam_master_verify_honey_comment_data() function doesn’t return anything on success
Fixing recaptcha spam_master_verify_comment_data() function doesn’t return anything on success
Removing get_option blacklist_keys since it was rename to disallowed_keys in wp version 5.5.0
Removing get_option comment_whitelist since it was rename to comment_previously_approved in wp version 5.5.0

6.1.8

Re-ordering contact form 7 spam characters and heuristics scan to apply Protection Tools page settings
Adding contact form 7 hidden honeypot fields
Real Time scan of contact form 7 hidden honeypot fields
Forcing style display none and input hidden in comments honeypot fields since fields are displaying in some themes
Fixing style typo in honeypot page
Adding css file
Moving all inline styles to css file since some websites use CSP

6.1.7

New version updates and fixes
Re-doing internal linking
Fixing spam char in multisite contact forms
Changing Alert Level 3 checks
Improved implementation of Honeypot & reCaptcha
Adding honeypot to login form
Adding honeypot to comments form
New statistics pages for Honeypot & reCaptcha
New emails and reporting for Honeypot & reCaptcha
Adding online statistics button to analytics page
New uninstall options

6.1.6

Since logs are kept for more than 15 days, changing analytics tables to display all data even if graphs are empty for the last 15 days
Fixing date typo in analytics pages
New styling in no graph page
New icon added in the no graph page
Adding more Chinese and Korean spam characters
Readme clean-up

6.1.5

Adding new inactive email
Adding new uninstall options
Fixing analytics system label
Removing register direct linking

6.1.4

Jumping bad version
Fixing logs deleting not obeying retention time
Fixing comments auto clean-up from using blacklist keys
Fixing Spam Buffer table typo
Fixing Firewall logs missing from deletions
New feature of combining deletion functions
New feature auto deletion of old trashed comments
Adding new uninstall options

6.1.2

Fixing repeating emails issue
Several improvements and speed up

6.1.1

Adding Arrows to Analytics menu selection.
Adding arrow up image.
Adding arrow right image.
Trimming top menu text.
Modifying analytcis queries
Fixing emailing function where in some occasions multiple repeated emails are sent

6.1.0

Fixing Contact Form 7 characters exclusion
Fixing days count to properly display 15 days
Modifying analytics 15 days graph limits
Modifying russian to cyrillic text labels

6.0.0

Implementing new database structure
Adding new spam buffer / threats database
Adding new plugin page to manage spam buffer / threats
Adding new transients database
Adding new plugin page to manage transients
Adding new whitelist exemption database
Adding new plugin page to manage whitelist exemption
Adding new plugin analytics page to manage Statistics, Firewall, Registrations, Comments and Logs
Database calls restructure
New install / uninstall options
Combining and reducing crons
Fixing spam_master_cache_proxie warning
Adding Spam Buffer check to Contact Form 7
Adding daily automatic clean-up to Registrations Logs (by month) to Protection Tools page – Clean-up
Adding daily automatic clean-up to Comments Logs (by month) to Protection Tools page – Clean-up
Adding daily automatic clean-up to Contact-Form 7 Logs (by month) to Protection Tools page – Clean-up
Adding daily automatic clean-up to Woocomerce Logs (by month) to Protection Tools page – Clean-up
Adding daily automatic clean-up to System Logs (by month) to Protection Tools page – Clean-up
API improvements
PHP 7.3 Ready!
New plugin paths
New protection Lists
Extra Protection Tools
Adding daily automatic clean-up
Version 6.0.0 contained 9 releases (6.0.0, 6.0.1, 6.0.2, 6.0.3, 6.0.4, 6.0.5, 6.0.6, 6.0.7, 6.0.8, 6.0.9).
For more info please check the change log online.

5.6.0

Version 5.6 contained 10 releases (5.6.0, 5.6.1, 5.6.2, 5.6.3, 5.6.4, 5.6.5, 5.6.6, 5.6.7, 5.6.8, 5.6.9).
For more info please check the changelog online.

5.5

Version 5.5 contained 10 releases (5.5.0, 5.5.1, 5.5.2, 5.5.3, 5.5.4, 5.5.5, 5.5.6, 5.5.7, 5.5.8, 5.5.9).
For more info please check the changelog online.

5.4

Version 5.4 contained 10 releases (5.4.0, 5.4.1, 5.4.2, 5.4.3, 5.4.4, 5.4.5, 5.4.6, 5.4.7, 5.4.8, 5.4.9).
For more info please check the changelog online.

5.3

Version 5.3 contained 9 releases (5.3, 5.3.1, 5.3.2, 5.3.5, 5.3.6, 5.3.7, 5.3.8, 5.3.9, 5.3.10).
For more info please check the changelog online.

5.2

Version 5.2 contained 10 releases (5.2, 5.2.1, 5.2.2, 5.2.3, 5.2.4, 5.2.5, 5.2.6, 5.2.7, 5.2.8, 5.2.9).
For more info please check the changelog online.

5.1

Version 5.1 contained 11 releases (5.1, 5.1.1, 5.1.2, 5.1.3, 5.1.4, 5.1.5, 5.1.6, 5.1.7, 5.1.8, 5.1.9, 5.1.10, 5.1.11).
For more info please check the changelog online.

5.0

Version 5.0 contained 4 releases (5.0, 5.0.1, 5.0.2, 5.0.3).
For more info please check the changelog online.

4.0

Version 4 contained 27 releases (4.0, 4.1, 4.2, 4.2.1, 4.2.2, 4.2.3, 4.2.4, 4.3, 4.3.1, 4.3.5, 4.3.6, 4.3.6.1, 4.3.6.2, 4.3.6.3, 4.3.6.4, 4.3.6.5, 4.4.0, 4.4.1.0, 4.4.1.1, 4.4.1.2, 4.4.1.3, 4.4.1.4, 4.4.1.5, 4.4.1.6, 4.4.1.7, 4.4.4, 4.4.5).
For more info please check the changelog online.

3.0

Version 3 contained 1 releases (3.0). For more info please check the changelog online.
TechGasp Framework V2 Implementation

2.0

Version 2 contained 5 releases (2.1, 2.2, 2.3, 2.4, 2.4.5).
For more info please check the changelog online.

1.0

Alpha release
Adding Buttons
Start coding