Many forms make it easy to send spam because they are not properly protected. Some sites have plugins installed to prevent form spam. However, the problem with these plugins is that they will ruin the user-friendliness. Using a form that is secured this way often requires additional actions from the website visitor. This makes sending the message difficult.
Test the protection of your own website's form. You can use the form below to test if the bot running in the background can successfully send a message via the form on your own website. This bot has been sending messages successfully at least:
Please note that using the popular Google Captcha on your site may be against the law. If you intend to use Google's Captcha, you should definitely familiarize yourself with the necessary policies. Read more about it in, for example, Measured Collective's article.
dxw3 Spam Block plugin efficiently blocks the spam that bots try to send through your form. It is easy to use: Download, activate and you're protected.
Set the fields on your form to match these fields. Fewer fields are ok. If your form has more fields and they are mandatory, sending the form may fail, even if your form is insecure. The bots find the fields themselves and manage to submit the form, but for this tool, it is better to set them manually on your site so that you can focus on testing your form's security strength.