OK, you were absolutely right. We are using the function admin_url() in WordPress to generate the URL we use for logging humans. So what I've done is I've kept the code the same, but I'm stripping out the scheme prefix of the URL so it ends up looking like:
//yoursite.com/...logHuman....
This is a perfectly valid URL and it means it's relative to the current scheme. So it will work great if you're using HTTP or HTTPS and will automatically pick the correct scheme.
This will go out with the next release.
Regards,
Mark
PS: If you found this helpful, please rate Wordfence 5 stars.
http://wordpress.org/plugins/wordfence/