Developer Tools Blocker

by SwiftNinjaPro

Description

This plugin blocks non-admin users from using inspect element, while still allowing access those with manage_options permission.
The plugin also blocks some of the common keys(f12, ect.) and optionally can block right-clicks for non-admin users.
Admins are unaffected by the plugin entirely. This plugin is also able to block users who open developer tools on another site, before visiting your site.

Version 3.0 update

This plugin is now fast and accurate, and should work on most browsers.
This plugin can detect the browser console based on lag increased by opening the console. This detection is tough for a browser to prevent or get around.
The detection runs fast, and has some resistance to lag spikes.

Lag detection does mean your site needs to have ok performance, but when testing it, I could play 10 of 10 youtube videos all at once without a false positive.
During my tests, detection was still within the second I open dev tools, and successful if I go to the page with it already open.
I tested this in chrome, firefox, and chromium.
I also tested this on my somewhat slow website with tons of wordpress plugins installed (and the 10 videos at once test) without false positives.

Installation

Upload plugin to the /wp-content/plugins
Activate the plugin through the “Plugins” menu in WordPress
Go to this plugins Settings and Check “Plugin Enabled” To Enable the plugin
Edit any other settings to your preference
Click Save and Enjoy

Screenshots

Blocking unauthorized users from Inspect Element

Faq

Does this block users if they already have developer tools open?

yes, developer tools is detected when the user first loads the page. If developer tools was opened on another site first, its detected by the plugin.
no matter when or where developer tools was opened, it should get blocked.

Can admins still use Inspect Element?

yes, this plugin detects if a user is has “manage_options” permission, and only blocks those who do not have permission.

Does this plugin block the f12 key?

common keys including f12 get blocked.

Does this plugin block right click?

There is a setting you can toggle on or off to decide if you want to block right click.

Can Inspect Element be used on wp-login?

the plugin attempts to block non-admin users from inspect element, including on wp-login.
If you would like to better protect wp-login, there is another plugin by SwiftNinjaPro that will only allow specific IP’s to assess wp-login
https://wordpress.org/plugins/swiftninjapro-wp-login-whitelist-ip/

Is there still a way around this plugins block?

unfortunately, there is always a way for someone to find a work-around to any code. Opening the console is done client side, so it can only be detected client side. This plugin does make it much harder for non-admins to inspect element though.

What do I do if I can’t access the login screen?

This could be because of the browser your using. Some browsers may respond differently.

If you cant access your site, you can do 1 of 2 things to disable this plugin:
1. Contact your host, and ask them to disable the plugin manually
2. Use FTP, Filezilla, or cpanel, then (click “File Manager”, if using cpanel) navigate to public_html/wp-content/plugins, then find the folder “swiftninjapro-inspect-element-console-blocker” and rename it to “swiftninjapro-inspect-element-console-blocker-off” to disable the plugin.

Reviews

if you want to ruin your SEO, then use it!

By themasterclass on September 1, 2023

After a few months, I regularly got an alert from my Google search console that the pages were not crawlable.
I checked everything but the problem persists…until deactivated this amazing plugin!

Muy buen Plugin

By rottwail on May 21, 2022

Hola, el plugin funciona de maravilla, las únicas dudas que tengo son: 1. ¿Por qué el plugin no me da las métricas de Page Speed en versión Escritorio? 2. ¿El Plugin deja entrar a todos los motores de búsqueda para no perjudicar al SEO? Si el posicionamiento web, funciona de correctamente, entonces el plugin se merece un 10 de puntuación. Con este plugin dificualtas varias cosas a personas con malas intenciones. Espero que el desarrollador Swift pueda responder a mis dudas y también sacar una actualización con mejoras, un cordial saludo y muchísimas gracias por trabajar en un plugin como este, saludos.

Just one word A M A Z I N G !!!!

By rolarseo on January 4, 2022

Just one word A M A Z I N G !!!! This plugin works perfectly! I love it! very simple and effective! stop those who try to hack your website! it's fantastic!

It works

By Tilakpranesh (tpranesh) on December 7, 2021

This plugin just does what is promises. After disabling the right click for my website, the only thing to fix is developer tools. And this simply fixes the issue by redirecting to a 404 page and thus your wp-content exposure is limited to only basic items.

This plugin is really good, but not working for IOS mobile devices.

By Mahinur Khan (mdmahinurkhan) on September 27, 2021

This plugin is really good, but not working for IOS mobile devices... Because it's automatically redirecting to 404 page from IOS mobile devices. Please fix for IOS mobile user. I'm deactivating the plugin now because of not working in my iPhone. It's redirecting to 404 page automatically. But it's fine on android devices.

Amazing until no more

By DesignsnMore (allmybanners) on August 19, 2021

08/2021 - Update 3.0 resolved this issue, amazing plug in Original Review: This is amazing tool, for no expert users works great, the thing is I was able to break this "protection" in a very easy way: 1.- Open developer tools in firefox or chrome (of course the plug in re direct the user to the 404 error page), perfect! until... 2.- Press the "back" button in the internet browser, then it go back to the previous page with all developer tools open (developer tools do not close en back) so then the plug in do not redirect again to the 404 page, it stay in the original page with all the code and developer tools available, I hope you guys can correct this because is an amazing tool. thank you

Great BUT

By neilyanto on August 12, 2021

The plugin is great but when I use my phone to visit the site and click the multiple tab icon on my phone, my site is automatically redirected to 404. I hope you can fix this.

Amazing

By gabrieluno on January 27, 2021

It is a wonderful plugin, it manages to block the developer tools, a feat that for many is impossible.

did not worked for me

By muza11 on January 1, 2021

i use chrome and i can easily use developer tool update: cleared browser cache and worked fine. it shows a 404 page but the developer code remains the same. helpfull at 95% capability.

Powerful but lock safari iphone iOS

By techweb2020 on December 5, 2020

it's OK everywhere except for iOS safari iPhones. iPhone are redirected to 404 page each time. But when the plugin is disabled, iPhones can access to the website Do you have an solution for safari on iPhone to access with the plugin enabled? or you plan to an update to allow safari? Thanks and great job!

Changelog

3.2.1

Added default option to disable plugin on 404 pages

3.1

Added option to disable on mobile browsers

3.0

Fixed many bugs
Made a new detection method thats fast and accurate
Now works in firefox

2.0.1

Added options to disable console blocker on admin and login pages (this could fix some issues)

2.0

Scripts rebuilt
Now uses devtools-detect from github

1.8

Added option to randomize the plugins javascript variable and function names

1.7

Added option to allow Search Engines for Sitemaps

1.6

Improved accuracy of devtools open detection

1.5.1

Improved how 404 page looks

1.5

Fixed detection for Microsoft Edge

1.4.6

changed display name

1.4

improved detection of opened console

1.3

added setting to allow or deny right clicks

1.2

Small change to how the plugin keeps people out of the direct url of it’s own files
includes attempt to send them to 404 page
tries to make direct access look like a 404 error to trick hackers

1.1.2

Bug Fix
fixed false positive that blocked Google bots
now the plugin does not send bots, like Google PageSpeed Insights, to the 404 page

1.1.1

Bug Fix
fixed console opening detection

1.1

Improved detection of wp-login
404 screen now displays “404 error Page Not Found”

1.0

First Version