Top 50 Tips, Tools and Plug-ins for WordPress Conversion Optimization

When it comes to making your website conversion rates significant, you need to give it a competitive edge. This is not complicated, but if you are not well equipped, you can find it difficult to navigate. Well, here are the best tips and tools you can make use of to accomplish your WordPress conversion optimization.

1. Tips on WordPress optimization

Making your WordPress website stand out and earn a high conversion rate does not come easily, but several techniques can be very useful in getting you to that goal.

Appropriate CRO approach
The Conversion Rate Optimization process should be straightforward, orchestrated with clear goals and the objectives of the website in mind.

Focus on getting the right traffic
Focusing on getting the right traffic is more important than getting a huge amount of traffic that will bounce without engaging with your content or taking action on your site.

Trust Signals
Having element such as reviews and badges that promote trust are essential. These are especially important when you want people to spend money on your e-commerce website.

Relevant information is paramount
The content on your website has to be relative to the reader. If the content on a webpage doesn't meet a website visitor's expectations, they will very likely leave soon after arriving.

Content planning
When planning the content for your site, you should make sure your content is rich with pertinent information, compelling images and / or videos. If you need direction, look at successful competitors in your niche. You want to be able to write content that is as good or better than theirs. If you are experienced in your field already, then you will have a lot of unique information to share. If you are not, do your research. You can hire people to do research for you or even write the content for your pages.

Landing pages
Landing pages are pages where visitors land on from outside of your website. Your title and description of those pages on the referring source should match the content on the landing pages. Any page that is indexed by Google (Most will be by default unless you have specifically requested that it not be indexed in settings) has the potential to be a landing page. Sometimes you will link to specific pages from paid ads and social media.

Make calls to action
These should be prominent. Use active verbs linked to a value proposition. Ensure they stand out from the rest of the page and ensure that all content on the page leads to your call to action. It's recommended to have your call to action above the fold. The fold is the top part of the website you see before scrolling.

Easy navigation
Ensure users have clear and coherent navigation through your website. Put related links in sub-menus to avoid having too many links on your top level navigation. Interlink related pages on your website within your content.

Every element has a role
Check to ensure that every item on your website has a useful contribution to your site’s goals. Extra elements have the potential to distract visitors and also slow down a website's load speed.

Technical check
The technical aspect of the site requires close attention since this has an effect on search engines ranking and website load speed.

Boosting your website speed
Site speed is crucial as a lagging site may cause visitors to bounce (leave without interacting with your website) before your webpage finishes loading. Making sure your images are appropriately sized and compressed will aid greatly website load time.

Caching stores data from your website on a users computer which speeds up load times on return visits.

Content delivery network
A CDN delivers content to a user from worldwide network of servers based on the user's geographic location instead of storing them on the host server. This is essential for reducing latency in browsing.

2. Tools and plug-ins to use on your WordPress site

There are several tools and plugins that assist in helping you to achieve higher conversion. Some use popup which we recommend using with caution on mobile as Google is potentially penalizing mobile sites with pop-ups that interfere with a user's ability to access the content on that website. Many of these offer overlapping features and fit into more than one category. You can test, read reviews and choose which ones you want to try out.

A/B Testing, Analytics and Optimization

Nelio AB Testing
If you need an A/B testing and a conversion rate optimization as well as a heatmap design for WordPress, Nelio has the goods.

Marketizor features a/b testing, online surveys to learn ore about your customers and advanced segmentation.

Hot Jar
Hot Jar provides heatmaps, conversion funnels, form analysis, and feedback polls and surveys.

Simple Page Tester
This plugin is quick and straightforward when it comes to setting up split tests for your site, helping you get the results in three steps. Moreover, it comes with a guide to help you in running your tests.
Good maintenance of your WordPress website could mean the difference between achieving successful conversions, than retrogressing on the same spot. It is apparent that with these tips, tools and plugins on board, you can get where you want to be effortlessly.

AB Press Optimizer
This optimizer offers many features to increase a website's conversions.

You can use this sliding side tab for generating conversions by displaying your call to action in a more visible way for your visitors.

SumoMe is a suite of tools the offers everything from heatmaps to lead capture.

An ideal option for your WordPress site heatmaps, you just sign up for a free account and get to click and scroll tracking.

Inbound Plugin Suite
This plugin suite can help in customizing templates, running A/B tests, monitoring stats on your website.

This plugin creates pricing tables with conversion optimization features.

Market Optimizer
Market Optimizer offers complete a/b testing and conversion optimization. This plugin also integrates with Gravity Forms.

Title Experiments
This plugin allows you to split test your page and post titles.

SES Theme Split Test
You can split test your them with SES Theme Split Test.

Website Speed

This is our favorite image compression tool. If your page doesn't load fast, your visitor may not take the time to stick around, much less convert. The results are consistently indistinguishable from the original image and the reduction in image size is often quite amazing!

Wp-Rocket is an option we use for caching on your WordPress website. It offers several options to improve the caching on your website.

WordPress Super Cache
If you need a plugin that can create static HTML files for the users who are not logged in, then it has to be this one. You may need to configure several aspects, but its performance is worth it.

MaxCDN (Stack Path)
MaxCDN, now known as StackPath is one option you can use for CDN purposes. They can deliver content to a user as quickly as possible using their global network.


CloudFlare is another popular CDN you can use to deliver content.

Landing page builders

Keyword Landing Page Generator
This tool enables you to have one landing page but offers various versions that are depended on the keywords, which means you can show visitors the customized versions separately.

If you want to create landing and sales pages or membership portals, then this plugin can come to your rescue.

Lead pages
This includes a simple landing page builder to enable you to create and publish them within minutes. It also comes with a popup and can capture information from mobile users through SMS.

Built by landing page experts, this plugin is developed to ease customization of the landing page and easier publishing on WordPress. What’s more, you can manage your pages from the plugin.

WP Landing Page
If you want to create an easy and efficient landing page, this tool is a good option. It contains features that enable you to monitor, test, and continually improve conversion of these landing pages.

Woo Commerce

WooCommerce Landing Page Generator
This tool helps you create landing pages for a WooCommerce shop by using UTM codes, URL parameters or Key Words.

Also known as GhostMonitor, recart makes more revenues for WooCommerce stores by sending an email to visitors who did not complete their purchase. Sometimes visitors get distracted or have a problem with checkout. This can help those visitors as well as those that need to see the product one more time before deciding to purchase.

Abandoned Cart for WooCommerce
This is an alternative to GhostMonitor. Both of these plugins will send an email to visitors that were a step away from purchasing.

AutomateWoo calls itself the all in one WooCommerce marketing plugin. It boasts several features including cart abandonment, SMS notification, vip customers, subscription automation and more.

Currency Converter Widget
Currency Converter Widget is a dynamic currency switcher. This is helpful for visitors who are reluctant to purchase when prices are not in their native currency.

WooCommerce MailChimp
If you are a MailChimp user, this plugin will allow you subscribe visitors to a MailChimp list at various points in the check out process.

If you don't use MailChimp, the MailPoet add-on for WooCommerce will let customers subscribe to your mail list as they checkout on your WooCommerce website.

Lead Generation

Optin Monster
This WordPress lead generation and popup plugin is used on about 276,000 sites, offering different types and A/B testing.

Thrive leads
These include several CRO options that can help build your list quite fast. Besides, it can also work well with email marketing.

The bloom Email plugin is an ideal go-to choice for automatic popup and fly-ins. It lets you display unique offers and forms based on visitor location and interaction.

Hello Bar
Hello bar collects subscriber information and sends it to your email list software.

Magic Action Box
This is a lead generation plugin with opt-in boxes, can work with Gravity Forms and further allows you create WordPress feature boxes.

Visitor Communication

Client Relations Factory
This valuable tool is a Virtual Robot that you can integrate into WordPress.

This tool provides an ideal service, with up to 50% addition incoming sales calls, thanks to its automatic callback feature.

Facebook Messenger
Over 1 billion people are on Facebook. You can use their messenger program to talk to clients directly from your website. This isn't a plugin but you can read a tutorial on how to integrate messenger into your website.

Social Sharing

Monarch Social Sharing Plugin
This plugin comes with several options that allow you place buttons and share bar as you deem fit.

This plugin is useful for creating a great design for tweet quotes.


Yoast SEO
This is your top SEO plugin, which featuring prompting for keyword optimization as well as content optimization and description writing. Further, it can integrate social cards and notifies you if your page is well optimized or not.

All in One SEO
All in One SEO is another plugin you can use to optimize your site. They are the only free SEO plugin to also provide SEO Integration for e-Commerce sites, including WooCommerce.

There are many actions you can take and tools you can utilize to optimize conversion on your WordPress website. We ended up with more than 50 and these are but a few. If you need help navigating the road of WordPress optimization for your website, you can contact us here.

Free SSL Certificates 2016: Never Pay for An SSL Certificate Again

Hello fellow ecommerce developers, designers, owners, or managers!

We're proud to transition all recurring customer SSL certificates, and new customer SSL certificates, to AutoSSL or Let's Encrypt. AutoSSL is a new option in the latest version of cPanel, which you can read about on their AutoSSL blog announcement. AutoSSL on our Liquidweb powered servers now have a signed certificate from Globalsign, which is fully validated in all browsers and works wonderfully on many of our websites.  Soon, AutoSSL will support Let's Encrypt, which is another option for a free SSL certificate. Let's Encrypt is a free, automated, open certificate authority run for the public's benefit. The EFF, Cisco, Mozilla, and many other big names in the online technology space are involved with Let's Encrypt and many hosting companies are installing the option to one-click install free SSL's from Let's Encrypt by default on their customers cPanel/WHM.

Thanks for reading friends, and let us know if you need any assistance with setting up your free SSL for ecommerce websites. It's generally a painless process that takes less than 15 minutes to setup and less than 1 hour for it to be issued and working!

Remember to verify you have a fully secure padlock in your browser on all pages that take personal information and credit card details!! Check your browser console to see which files are loading insecurely, commonly we see images or third party scripts being the root cause of any broken ssl padlocks on checkouts.

Track Phone Calls from your WordPress Website with CallRail

Are you looking for a more clear ROI from your online marketing? Your business should be tracking phone calls from your website and other online marketing channels. It's cheap, easy to setup, and allows for optimal refinement of your marketing campaigns.

CallRail is the answer.

Trusted by more than 10,000 companies, CallRail tracks phone calls from your website, records them, and gives you the analytics.

CallRail offers the following:

Let's run through an example of how to get started. First, you decide you want to somehow track your business phone calls to produce more leads. So you search the internet, find CallRail and sign up. You talk with a rep and they integrate your entire website including your WordPress, Google Analytics, KissMetrics, Salesforce, and Google Adwords. Now your on a roll. They even give you a toll-free number to track and walk you through voicemail transcription. You're very excited and the rep has even more great news: it doesn't cost your anything because you have a 14 day free trail. She then explains that you can set up notifications, block and filter calls, and receive real time statistics. She gives you your username and password sets you on your way to check out the CallRail analytics. It's as easy as that! KickinKnowledge will even help guide you through this process, and ensure the website/analytics integration goes worry-free.

This platform is a no brainer. It will increase the value of your Google Analytics data almost instantly and gives you the opportunity to properly measure your conversion rate. From visitor and keyword call tracking to dynamic website call tracking to static and offline call tracking, CallRail covers all angles and gives you the best results! Give us a call today at 415-237-3932 and we can help you integrate Callrail with an effective online marketing plan.

What is the best Startup Website Hosting?

When it comes to hosting for your startup website, you do not want to choose a low quality host with sub-standard hardware and support. For example, Godaddy and Hostgator Shared website hosting packages may have 1000+ websites along with your website.  So, instead, you go for a VPS, but with the same Godaddy, Hostgator, Bluehost hosts, you find out that when you get serious traffic, the load times increase dramatically, or they shut you down for too much cpu/ram usage. If you look at the server CPU's in a Hostgator VPS, you are likely to see something like AMD processors.  This website,, in comparison, is hosted on a Liquidweb VPS, which has Intel Xeon processors.  As we all know, Intel processors have consistently proven to have better overall performance.

In addition, not all hosts are taking advantage of the latest in hard drive technology, solid state drives.  Solid state drives, or "SSD", are significantly faster when accessing the files that make your website run.  Liquidweb has SSD servers, and many of the more popular hosts do not even offer the option yet.

If you already have a hosting service for your startup, you can test the performance of your startup website using - This awesome website tests your website speed with 50 users incrementally accessing your website pages.

Here's a screenshot of this website's performance, with one spike of almost 1.25 second's.  Most of the time, it is under 800 millisecond's for all the way to 50 users.  I can now have some confidence that my website will be able to handle a good amount of traffic and visitors moving around my website.  If you have a spike from reddit, facebook, or a large blog like Mashable, then you better have a good server like my VPS, and also caching configured properly (with WordPress use W3 Total Cache or Supercache)  If you have any questions about your startup website performance or hosting setup, feel free to contact Kickin Knowledge for a free consultation.  Full disclosure, we are a compensated affiliate of Liquidweb, and we recommend joining their Affiliate program, the rates aren't the highest in the industry, but their support allows myself and others to recommend them to friends, family, and clients without worrying about any negative feedback on the referral.


best startup hosting

Improving Woocommerce Checkout Conversion with a Custom Error Message

Woocommerce is awesome.  My favorite e-commerce structure for myself and clients.  It does however, have some issues with conversion, particularly in the checkout process of and other payment gateways that accept credit cards.

Here's the issue... when a potential customer goes to checkout in a Woocommerce store (with for example payment gateway plugin), and puts in their credit card data, the error that Woocommerce provides is less than satisfactory.  It says something along the lines of, "An error occurred, please try again or try an alternate form of payment."  Pretty vague, and not very friendly to potential customers who are having trouble.

So, what to do?  Create a quick and easy function in php to add to your Child theme functions.php file (always use a child theme to keep your changes with your WordPress theme upgrade-safe!)

Here it is -

// alter the subscriptions error
function my_woocommerce_add_error(
$error ) {
if( 'An error occurred, please try again or try an alternate form of payment.' == $error ) {$error = 'This is where you're new error message will go, if you have any trouble - contact 555-555-5555.  Please verify your CVV/CVC code is correct, as well as your billing address matches the card account.';
} return $error; }
add_filter( 'woocommerce_add_error',
'my_woocommerce_add_error' );


A couple things here... if the error message is different in your checkout, make sure to change it, or your new custom error message won't work properly.  Also, as I added in the example above, a phone number to call, and a mention of the CVV/CVC 3 digit code, which is often the issue.

These steps should have you converting a little better when customers have credit card payment issues.  Give me a call at 415-237-3932 if you need help with your WordPress and/or Woocommerce website.

Wooing Business into Ecommerce Prosperity



Wooing Business Into Ecommerce Prosperity With Woocommerce
By: Justin Michael Murray

Business trends in the current day and age have changed tremendously with the influx of internet technology and online communication. The internet has become the home for marketing and promotion of business products. It is possible for a Small business to explode into a multi-billion profit entity through effective use of the online platform for marketing. The market will only increase, but must be harnessed with ecommerce for small business. Ecommerce is simply 'the' best way to get your business visible and to attract attention of your potential customers. Ecommerce refers to operating business electronically, primarily over the Internet and with the capacity to get your products "floorspace" on the internet marketing platforms like search engines, social media networks, web pages, blogs, and business directories. You can also define it as buying and selling products and services through the electronic channels. There is nothing more convenient as ecommerce because of the expanding market, 24 hour product availability, and global reach in real time. Small, medium, and larger businesses are increasingly using the innovative ways of the internet to provide consumers with faster online business solutions.

The trick of getting ecommerce for small business booming lies in WordPress with the amazing Woocommerce plug-in extension. It's very important to note that ecommerce works best when you take into considerations the aspects of clean design, fast performance, and visitor captivation. When your business is online some of the things you need to do to attract traffic visibility include beauty and easy access to information on products. This is where the brilliant Woocommerce themes available comes in. Most businesses use WordPress ecommerce since it's very easy to operate and easier for the traffic to access necessary information. I've taught small business owners how to manage their own store in less than 2 hours of training!

Woocommerce is one of the most popular ecommerce plug-ins for WordPress. This is what transforms a WordPress small business website to a serious ecommerce store with easy management, a solid seo foundation, schema data (stars in Google search for products), and all the bells and whistles that an online store requires. With the help of the Woocommerce plugins the WordPress eCommerce become a fast and inexpensive way to get your products selling beautifully, yet feature-rich solution. As long as you pick a responsive theme (which you should!), then the store will be mobile and tablet friendly. This is extremely important in this day and age of iphones, androids, ipads, and desktops. Woocommerce extension plugins provide the best features to keep your store competing on many different levels. It has social media integration, Google Analytics e-commerce tracking, security to a WordPress Sucuri standard, comprehensive store management, tax & Shipping options, and a plethora of payment gateways. It's also quite conversion friendly, with one page checkout and plenty of room for product images and descriptions. Woocommerce and WordPress in general is developer friendly, so the market and rates are very competitive, equaling cheaper customizations to the theme (design) or coding (functionality) Now is the time for your business to jump into thinking about the possibility of an online store.

Thank you for reading!

Justin Murray

Owner of Kickin Knowledge

- E-Commerce Consultation & Development

Take your business to the next level and learn more about Woocommerce for small business at

Article Source: Wooing Business Into Ecommerce Prosperity With Woocommerce

A Guide to Woocommerce Security


Owning and/or managing an ecommerce website can sometimes be overwhelming.  Far too often I am asked to review a Woocommerce website for marketing or development work and I then immediately realize that the store is insecure and contains possibly serious security issues.  This puts a massive amount of liability on the owner of the website, but little to no liability on past developers or designers.  Many of these cases of insecurity is simply a business owner developing their own ecommerce website, or developers who simply don't understand the requirements of a properly secured woocommerce store.  Proper Woocommerce security simply cannot be overlooked for the long term protection of your investment.

Call KickinKnowledge at 415-237-3932 to schedule a free security review of your website.

The first sign of an insecure woocommerce website is the absence of a padlock in your browser address bar and no https before the website address.  If you enter your credit card data on a page that is insecure, you are putting yourself at risk for man-in-the-middle attacks and eavesdropping of your confidential data.  Woocommerce is supposed to secure your checkout when you enable "Force secure checkout" checkbox in the Settings.  This requires the purchase of a SSL certificate from a certified vender like Verisign, Thawte, Comodo, or Godaddy.  The payment gateway which you use for Woocommerce will alert you in the documentation if a SSL certificate is required, and generally any of the "on-site" payment gateways like will require an SSL for payment.  So if you don't have an SSL , I recommend Thawte, as they have fair pricing and a number of different coverage levels depending on your ecommerce store variables (the extenteded validation SSL certificates are awesome, as they allow for the long green security validation bar for extra security comfort in certain browsers)  Unfortunately, even with Woocommerce setup for secure checkout, and an SSL certificate installed on your server, that doesn't always cover some parts of the website generated via plugins and also certain themes.  You may still be stuck with no padlock, and insecure data warnings.


[fusion_builder_container hundred_percent="yes" overflow="visible"][fusion_builder_row][fusion_builder_column type="1_1" background_position="left top" background_color="" border_size="" border_color="" border_style="solid" spacing="yes" background_image="" background_repeat="no-repeat" padding="" margin_top="0px" margin_bottom="0px" class="" id="" animation_type="" animation_speed="0.3" animation_direction="left" hide_on_mobile="no" center_content="no" min_height="none"]

Enable HTTPS in Woocommerce

Enable HTTPS in Woocommerce


Fortunately, their are a number of ways to diagnose the insecure checkout problems with Woocommerce websites.  Here are the steps I use to assess security with Woocommerce:

1) Have you confirmed that the server has a dedicated SSL certificate installed correctly (check with your host if you're not sure)

2) Have you forced secure checkout in Woocommerce Settings (as described and pictured above)

3) Have verified a secure padlock showing in Google Chrome and Firefox?

IF # 3 is not showing,  I use the WordPress HTTPS plugin

If that plugin does not solve your padlock issues, then you will want to run your checkout url through - or, you may use Google Chrome - Right click on the Checkout page, choose Inspect Element, and you should see all the insecure content warnings in the Console.  An alternative is to use Mozilla Firefox and the Firebug/Web Developers tool browser plugin.  Usually it is caused by images loaded via theme options with http:// instead of https:// in the url (a quick and easy fix) or third party integrations (social plugins)  Sometimes you have to use a plugin like Widget Logic to make sure that insecure content is not loaded on your Checkout page.  As a "side" note, if sidebar widgets are causing the problem, you should probably switch to a full page (no sidebar) page template anyways.  This thought behind this conversion element is that less distractions from the actual checkout process leads to more conversions.  Also notice in the image below from a previous ecommerce client, that there is an visual accreditation of the Geotrust SSL and the SSL badge.  These are also great for improving conversion.


[/fusion_builder_column][fusion_builder_column type="1_1" background_position="left top" background_color="" border_size="" border_color="" border_style="solid" spacing="yes" background_image="" background_repeat="no-repeat" padding="" margin_top="0px" margin_bottom="0px" class="" id="" animation_type="" animation_speed="0.3" animation_direction="left" hide_on_mobile="no" center_content="no" min_height="none"]

secured woocommerce checkout verified in google chrome

Secured Woocommerce Checkout Verified in Google Chrome


What are some other recommendations for keeping Woocommerce secure?

1) I always use the Limit Login Attempts plugin Wordfence to protect against brute force password attacks, and a variety of other security issues.

2) Use a reputable host like Hostgator, Bluehost, Rackspace, etc.

3) Updates!  Always keep WordPress, themes, and plugins updated to the latest version.

4) Have a backup and recovery plan for a quick comeback if a security breach or malicious code insertion is detected.

5) Preferably use SFTP or SSH when accessing your server files.

6) Advanced: Ensure that your MySQL database has a secure passwords and do not share access with anyone.  At Kickin Knowledge we also like to change the WordPress database table prefix to something other than wp_, for an extra layer of obscurity.

7) Keep a policy of having extremely secure and unique passwords for your hosting account and your wordpress administration login.  Use numbers, letters, special characters, and a minimum of 14 characters.

8) Limit your use of plugins, as the more plugins, the more possible security holes and usually slower website.

9) Buy a premium and consistently updated woocommerce theme from a reputable developer like woothemes or themeforest.

10) Advanced: Edit your htaccess to protect against sql injections. If you are not comfortable with the htaccess file and all of its functions, it is best you read to understand these items first, as you can do some serious damage to your website (although all are reversible if you have backups) If you use Yoast SEO for your Woocommerce seo, then you can access the htaccess file from there!  Remember to backup your original first before adding any of the code snippets below -

Add this snippet first

[/fusion_builder_column][fusion_builder_column type="1_1" background_position="left top" background_color="" border_size="" border_color="" border_style="solid" spacing="yes" background_image="" background_repeat="no-repeat" padding="" margin_top="0px" margin_bottom="0px" class="" id="" animation_type="" animation_speed="0.3" animation_direction="left" hide_on_mobile="no" center_content="no" min_height="none"][box] ## Include this at the start of your .htaccess file ## Options +FollowSymlinks RewriteEngine On[/box]

SQL injection block for WordPress htaccess

[/fusion_builder_column][fusion_builder_column type="1_1" background_position="left top" background_color="" border_size="" border_color="" border_style="solid" spacing="yes" background_image="" background_repeat="no-repeat" padding="" margin_top="0px" margin_bottom="0px" class="" id="" animation_type="" animation_speed="0.3" animation_direction="left" hide_on_mobile="no" center_content="no" min_height="none"][box] ## SQL Injection Block ## RewriteBase / RewriteCond %{REQUEST_METHOD} ^(HEAD|TRACE|DELETE|TRACK) [NC] RewriteRule ^(.*)$ - [F,L] RewriteCond %{QUERY_STRING} ../ [NC,OR] RewriteCond %{QUERY_STRING} boot.ini [NC,OR] RewriteCond %{QUERY_STRING} tag= [NC,OR] RewriteCond %{QUERY_STRING} ftp: [NC,OR] RewriteCond %{QUERY_STRING} http: [NC,OR] RewriteCond %{QUERY_STRING} https: [NC,OR] RewriteCond %{QUERY_STRING} (|%3E) [NC,OR] RewriteCond %{QUERY_STRING} mosConfig_[a-zA-Z_]{1,21}(=|%3D) [NC,OR] RewriteCond %{QUERY_STRING} base64_encode.*(.*) [NC,OR] RewriteCond %{QUERY_STRING} ^.*([|]|(|)||ê|"|;|?|*|=$).* [NC,OR] RewriteCond %{QUERY_STRING} ^.*("|'|<|>||{||).* [NC,OR] RewriteCond %{QUERY_STRING} ^.*(%24&x).* [NC,OR] RewriteCond %{QUERY_STRING} ^.*(%0|%A|%B|%C|%D|%E|%F|127.0).* [NC,OR] RewriteCond %{QUERY_STRING} ^.*(globals|encode|localhost|loopback).* [NC,OR] RewriteCond %{QUERY_STRING} ^.*(request|select|insert|union|declare).* [NC] RewriteCond %{HTTP_COOKIE} !^.*wordpress_logged_in_.*$ RewriteRule ^(.*)$ - [F,L] [/box]

Hide your server signature

[/fusion_builder_column][fusion_builder_column type="1_1" background_position="left top" background_color="" border_size="" border_color="" border_style="solid" spacing="yes" background_image="" background_repeat="no-repeat" padding="" margin_top="0px" margin_bottom="0px" class="" id="" animation_type="" animation_speed="0.3" animation_direction="left" hide_on_mobile="no" center_content="no" min_height="none"][box] ## Disable the Server Signature ## ServerSignature Off[/box]

Block All Access to Specific Security Sensitive WordPress files

[/fusion_builder_column][fusion_builder_column type="1_1" background_position="left top" background_color="" border_size="" border_color="" border_style="solid" spacing="yes" background_image="" background_repeat="no-repeat" padding="" margin_top="0px" margin_bottom="0px" class="" id="" animation_type="" animation_speed="0.3" animation_direction="left" hide_on_mobile="no" center_content="no" min_height="none"][box] ## Block Sensitive Files ## Options All -Indexes Order allow,deny Deny from all Order allow,deny Deny from all Order allow,deny Deny from all Order allow,deny Deny from all Order allow,deny Deny from all Order allow,deny Deny from all Order allow,deny Deny from all Order allow,deny Deny from all [/box]

I know, it's a lot of stuff to work through.  Once these security changes are implemented, you can concentrate more on the items that will bring you ROI, like search engine optimization and paid advertising.  You do not want to deal with Google unranking your website if you get hacked with malicious code, or even worse, compromising a customers private credit card data through your Woocommerce checkout.  When in doubt, or if you have any questions, contact Kickin Knowledge or another experienced Woocommerce security expert and have them audit your website.  We also have a great blog post for finding help with Woocommerce. Call me, Justin, the author of this article at 415-237-3932 to schedule a free security review of your ecommerce store.


Looking for help with Woocommerce and WordPress?

Woocommerce is an amazing platform for e-commerce. It has the ability for small business owners to manage and modify many important aspects of their online store. Let's face it though, WordPress and website technologies in general have issues. Plugins have conflicts with themes or other plugins, load times become slower, and even design does crazy things sometimes! Luckily, as an open source plugin developed via GitHub, Woocommerce has a ton of resources for getting assistance with your issues. It is very similar to the community sourced WordPress CMS itself, which has done nothing but grow tremendously in the last 10+ years.  Woocommerce was forked from Jigoshop, and became available on September 27, 2011.  Now it literally runs thousands of websites.  With all the variations of coding styles in the WordPress themes, plugins, and extensions of these thousands of websites, often event the best Woocommerce developers get stuck with errors and need assistance from a third party.  Remember, before letting anyone make changes or updates, it's a good call to backup your database and files (your host can usually help you with this, or use a plugin like BackWPup or BackupBuddy).  Also, getting help and code snippets from random people on the internet could be a dangerous thing for your visitors and your website in general.  Make sure you have some idea of what the code snippet is achieving, and ask questions if anything looks or acts strangely.  Particularly with ecommerce websites, it is necessary to have a secure checkout process.  You can verify the security of your checkout by using the free service at




So you're looking for help with Woocommerce for WordPress?


First and foremost, the Forums have a library of information on all WordPress related issues, including many discussions that are Woocommerce related. These people know and love WordPress, and the experience level ranges from some of the best developers in the world, to first time WordPress users.


Woothemes is the “caretaker” of the open source Woocommerce plugin. Their team members are some of the largest contributors to the code-base which keeps Woocommerce growing.  They are also the industry leader in related themes and extensions.  I always prefer my web development clients to consider their themes.  An alternative and wider selection of Woocommerce themes can be found on Themeforest.  The Woothemes support section is a great resouce for Woocommerce users.  If you create a Woothemes account, you can then access their helpdesk section, a knowledge base, and a forum.  The helpdesk is where you can submit support for paid themes and extensions, and possibly get answers to general Woocommerce questions.  Of course, support tends to be focused on their specific paid themes and extensions.  Their knowledgebase is full of extensive documentation, along with the forum of passionate users.  If you purchased a theme of Themeforest or another theme developer, then you should go to their respective support forum for any theme help. If you have a custom WordPress theme, or you are having difficulty choosing the right theme for your business, then it may be best to call an experienced Woocommerce developer like Kickin Knowledge at 415-237-3932.


StackOverflow has a specific section for WordPress questions that are "tagged Woocommerce", or containing information related to Woocommerce. StackOverflow is widely known as a programmers paradise, and can therefore be quite intimidating if you haven't encountered coding or the culture before. Google will be your friend with any programming jargon you don't understand.


The Google+ Woocommerce Users Community is only destined to grow and I have personally learned a few new tips by surfing around the past posts.  Members tend to be very helpful and Google+ Communities are the perfect infrastructure for sharing and discussion.


Quora is Kickin Knowledge's favorite question and answer website on the internet.  Quora is what Yahoo Answers or never was. A real community of exceptional writers. Definitely check out the e-commerce and Quora Woocommerce topic.


So, maybe your sick of asking for help and you want to learn how to debug code and write your own themes or extensions.  It's not particularly difficult, and the basics can be learned in just a few months of practice.  Start with the basics. What runs behind the scenes Woocommerce?


PHP, Javascript, CSS, and HTML are the coding languages behind the scenes of Woocommerce and WordPress.  It is also beneficial to understand Server configurations and technologies, along with the basics of Mysql database workings (WordPress stores its information in a Mysql database).  For learning coding, I suggest checking out Treehouse education. The unique style of teaching at Treehouse can rapidly increase your knowledge retention and put you on the fast-track to becoming a Woocommerce pro!


Our friend Brad Griffin also has some great material and a helpful video for diagnosing issues on his Woocommerce help article.

Essential E-Commerce Icons, Security Badges, and Call-to-Actions

Are you interested in the best e-commerce icons, security badges and call-to-actions?  I've researched the best embeddable icons and badges, so that e-commerce owners may make the best selection for their online store.  The visual aspect of an e-commerce website is one of the most often overlooked and misunderstood concepts.  Visitors need to feel safe and secure, while having a memorable experience.  At the same time they have to be driven towards your purchase process.  I recommend reviewing your favorite e-commerce websites, and notice if you see any similarity between the icons for security scans, SSL, social media buttons, etc.  I'm betting that you will see many that I have listed and pointed out in the imagery below.

Let's start by taking a look at our favorite selection of e-commerce icons and security badges.  Chances are, if you already have an SSL certificate for your secure checkout process, then you already have a SSL badge to add to your footer, or perhaps your right or left website sidebar.  The position varies depending on the design of your website, but it's a good call to add the clickable SSL javascript provided by Comodo SSL, Godaddy SSL, or any of the other large name providers.  Other providers of icons and security badges are Trustwave, TRUSTe, McAfee Trustmark and the Better Business Bureau.

When I began writing this blog post, I intended to get screenshots of each security badge, some SSL badges, etc.  Instead, I found them all on the Godaddy SSL  product page, so I took a screenshot with Fireshot (an awesome firefox add-on), and used arrows to pick apart the some of the important visual accreditation.  Godaddy has an incredible product page here, with an aim of converting you to purchase an SSL, preferably the more expensive one.  Check out my edited screen shot below:


[fusion_builder_container hundred_percent="yes" overflow="visible"][fusion_builder_row][fusion_builder_column type="1_1" background_position="left top" background_color="" border_size="" border_color="" border_style="solid" spacing="yes" background_image="" background_repeat="no-repeat" padding="" margin_top="0px" margin_bottom="0px" class="" id="" animation_type="" animation_speed="0.3" animation_direction="left" hide_on_mobile="no" center_content="no" min_height="none"]

 Godaddy ecommerce icons and visual accreditations

Godaddy Ecommerce Icons and Visual accreditation


Getting Your Website Indexed by Google

Indexing of your website in Google is extremely important.  If it isn't indexed in Google, then your website pages will not show up in Google search results.  If you do some significant changes in your website structure or layout, it's a good idea to re-submit your sitemap to Google Webmaster Tools.   Of course, a fast loading website and a properly optimized on-page seo implementation is also key to getting properly ranked in Google Search.  As you may have noticed, I have a special place in my heart for, and I love helping to contribute my knowledge to the Questions posed by users, along with asking questions myself.  The following question, What are the ways to get top indexing in Google?, is a question I have answered many times in real life for clients and associates alike.  As a professional in local San Diego SEO, I pride myself in sharing my knowledge with open communities, enjoy, and leave any further questions in the social comments in the bottom of this post....


Read Quote of Justin Murray's answer to Search Engine Optimization (SEO): What are the ways to get top indexing in google? on Quora