Limit Login Attempts blocks an Internet address from making further attempts after a specified limit on retries is reached, making a brute-force attack difficult or impossible.

For more details please visit plugin page https://wordpress.org/plugins/limit-login-attempts/.

Attention!

This plugin do not come as a part of theme package. You should install it separately. It’s 100% free.
Download plugin