The Sucuri Security - Auditing, SiteCheck Malware Scanner and Hardening is a security plugin enables you to scan your WordPress site using Sucuri SiteCheck for security and malware issues, and also verifies the security integrity of your core files right in your dashboard.
From the WordPress dashboard, navigate to Plugins > Installed Plugins.
Find "Sucuri Security" and click Activate
Navigate to Sucuri > Settings
Click on the top banner to generate an API key (will be sent to your email)
Copy/Paste the API key from email into the API Key field
Change "Scanning Frequency" to "Once Daily (24 hours)"
Select the "Notification Settings" tab, then uncheck notifications for successful and failed login attempts (Not doing so will result in too many notifications). It may be possible to leave the failed login attempts notification checked, but only if you are hiding the login screen (see Rename WP-Login plugin)