This is what wpWave say about their plugin:
Hide My WP control access to PHP files. It protects your site from almost 90% of SQL-Injection and XSS attacks caused by direct access to PHP files. This means you can install unsafe plugins without having to worry about security. You know hackers, spammers and bots all love WordPress, but with Hide My WP they can’t recognise (or get access to) WordPress, meaning they’ll simply ignore you!
One great thing about this plugin is that when you uninstall it, no changes to your site remain, and you can continue to use it like a standard WordPress site.
At the time of writing this article, the plugin has received almost 2,000 purchases and has an average rating of 4.5 stars!