Works where you build.

Plugin — protects comments, login & contact forms

• ✓Install the CaptchaKit plugin and paste your site key + API key in Settings.
• ✓Comments, login, and registration forms are protected automatically.
• ✓Works with Contact Form 7 and WPForms out of the box.
• ✓Server-side verification is handled by the plugin — no code needed.

Theme app block — guards storefront forms

• ✓Add the CaptchaKit block to any section in your Online Store 2.0 theme.
• ✓Protects contact, newsletter, and account login forms.
• ✓Form submission is held until the visitor clears the game.
• ✓Tokens are verified server-side before the form goes through.

Dashboard app + one-line backend verify

• ✓Drop the widget into any page with an HTML embed.
• ✓Your API key lives in the Wix Secrets Manager — never in page code.
• ✓Verify tokens with a single backend web-module call.
• ✓Setup screens in your Wix dashboard walk through the keys.

Designer extension — one-click script injection

• ✓The extension injects the CaptchaKit script site-wide in one click.
• ✓Paste the widget div into an Embed block on any form page.
• ✓Pick which of your games shows, right from the Designer panel.
• ✓Verify tokens wherever your form submissions land.

Store app — login, registration & checkout forms

• ✓Install the app and land on a simple settings page.
• ✓Paste your site key + API key — the snippet is injected for you.
• ✓Protects storefront login, registration, and checkout-adjacent forms.
• ✓Verification runs server-side through the app.

embed.js + one REST call

• ✓Add one script tag and a widget div — that's the whole frontend.
• ✓Your server makes one POST to /api/verify with the token.
• ✓Guides for React, Next.js, Vue, Node, Python, and PHP in the docs.
• ✓Tokens are signed, one-time-use, and expire in 10 minutes.