WordPress Zero Spam


Quit forcing people to answer questions or confusing captchas to prove they’re not spam. Stop malicious users before they ever have a chance to infiltrate your site — introducing WordPress Zero Spam.

WordPress Zero Spam uses AI in combination with proven spam detection techniques and databases of known malicious IPs from around the world to detect and block unwanted visitors.

Just install, activate, and enjoy a spam-free site!

WordPress Zero Spam features

  • No captcha, spam isn’t a users’ problem
  • No moderation queues, spam isn’t a administrators’ problem
  • Third-party blacklist checks (Zero Spam, Stop Forum Spam)
  • Automatically & manually block IPs temporarily or permanently
  • Geolocate IP addresses to see where offenders are coming from
  • Block entire countries, regions, zip/postal codes & cities
  • Sync the WP core disallowed list weekly using splorp’s Comment Blacklist
  • Multiple detection techniques including David Walsh’s solution

WordPress Zero Spam also protects

WordPress Zero Spam is great at blocking spam — as a site owner there’s more you can do to stop WordPress spam in its tracks.

WordPress Zero Spam needs your support

WordPress Zero Spam is free & always will be. Please consider making a donation to help encourage plugin’s continued development.


  • WordPress Zero Spam dashboard
  • WordPress Zero Spam detections log
  • WordPress Zero Spam blocked IPs
  • WordPress Zero Spam blacklisted IPs
  • WordPress Zero Spam settings


  1. Upload the entire wordpress-zero-spam folder to the /wp-content/plugins/ directory.
  2. Activate the plugin through the Plugins screen (Plugins > Installed Plugins).
  3. Visit the plugin setting to configure as needed (Settings > Zero Spam).

For more information & developer documentation, see the plugin’s website.


Does WordPress Zero Spam check Jetpack comments?

No. WordPress Zero Spam is unable to integrate Jetpack. For more information, see https://wordpress.org/support/topic/incompatible-with-jetpack-comments.


أكتوبر 14, 2021
I have tried to post a comment on a photography website and got the following result: "You have been flagged as spam/malicious by WordPress Zero Spam" That is such a b/s. I hate spam and am not a spammer. This and complicated time consuming captchas as well as cookies pop ups are becoming annoying, insulting and ridiculous accusing people being spammers. GET A LIFE!
شتنبر 23, 2021
Would be a zero star review if I could. I was reading manga on a site when this piece of shit AI blocked my ip address for no fucking reason.
يوليوز 25, 2021
Installed through the regular WordPress process. One button default configuration used. Instant success with zero spam getting through. I’m a small volume site, but I see 30 or more spams per day. Log is clear. Actually looking forward to seeing how the spam stats develop. It’s fun seeing the bad guys shut down! Update: Stopping 30-70 spams per day on my little site. Thanks, Zero Spam!
يوليوز 3, 2021
I couldn't get send a message to a website because it listed me as spam and I do not send anything that could remotely be interpreted as spam and have never before had this happen. I do receive a lot
يونيو 30, 2021
I don't appreciate being forced to uninstall your plugin to get rid of the nags you put in the dashboard. You don't allow for dismissing these nags and you require other actions in order for the one to go away. But then after I click to go to the settings page to set up the plugin, the nag returns. There was a time when WordPress rules required you to allow nags to be dismissed. It is a shame that rule seems to no longer be enforced.
Read all 115 reviews

Contributors & Developers

“WordPress Zero Spam” is open source software. The following people have contributed to this plugin.


“WordPress Zero Spam” has been translated into 1 locale. Thank you to the translators for their contributions.

Translate “WordPress Zero Spam” into your language.

Interested in development?

Browse the code, check out the SVN repository, or subscribe to the development log by RSS.



  • fix(updates): resolves #262, sanitized & escaped variables
  • fix(standards): resolved #261, sanitized & escaped variables
  • fix(cron jobs): resolves #260, removed the remote call to splorp’s blacklist on Github


  • Fixed issue with WPForms AJAX forms not getting validated by WordPress Zero Spam #238
  • David Walsh detection technique applied to WPForms & CF7
  • Miscellaneous admin UI improvements
  • Added ability to disable syncing WP’s Disallowed Comment Keys


  • Improved protection for comments, CF7, Formidbale, registrations, WooCommerce and WPForms submissions.
  • David Walsh detection technique applied to core WP registration forms.


  • PHP notice fix


  • Performance enhancements
  • Various admin UI improvements
  • Strengthened comment & registration spam detections


  • Fix for admin first-time config notice


  • Added first-time configuration notice & auto-configure recommended settings functionality
  • Added the ability to regenerate the honeypot ID
  • Various admin UI improvements
  • WP Disallowed Comment Keys are automatically updated weekly using https://github.com/splorp/wordpress-comment-blacklist
  • Strengthened comment spam detections using WP core disallowed list
  • David Walsh’s spam technique is back! https://github.com/bmarshall511/wordpress-zero-spam/issues/247


  • Various admin UI improvements
  • Strengthened comment spam detections


  • Fix autoloader compatibility with Windows paths (https://github.com/bmarshall511/wordpress-zero-spam/pull/236)
  • Various admin UI improvements


  • Fix for when checks should be preformed


  • Added support for Formidable Form Builder
  • Fixed PHP error related to a blacklist call


  • Admin UI enhancements
  • Added support for WooCommerce
  • Added Cloudflare IP address support (https://github.com/bmarshall511/wordpress-zero-spam/issues/220)
  • Update to data sharing option
  • Added ability to block individual locations (country, region, zip & city)
  • Added support for WPForms


  • Updated readme file & documentation
  • Can now be installed via composer
  • Updated the required PHP version


  • Initial v5.0.0 release
  • Huge performance enhancements
  • More control over settings to fine-tune functionality
  • Lots of bug fixes & improvements