Is there a way to prevent WP path Probing

I have constant probes, hacking and web app attack attempts on my sites, search WP paths to access. Is there a way to set this up either through workers or something else so they are automatically rejected and the IP is blocked? For example, these are the types of paths I would like to trigger an automatic IP block. How would I set this up and is there a tutorial you can point me to (if it already exists)?

//web/wp-includes/wlwmanifest.xml
//cms/wp-includes/wlwmanifest.xml
//website/wp-includes/wlwmanifest.xml
//wp/wp-includes/wlwmanifest.xml
//2019/wp-includes/wlwmanifest.xml
//wp-includes/wlwmanifest.xml
//2018/wp-includes/wlwmanifest.xml
//wordpress/wp-includes/wlwmanifest.xml
//test/wp-includes/wlwmanifest.xml
//blog/wp-includes/wlwmanifest.xml
//wp2/wp-includes/wlwmanifest.xml
//site/wp-includes/wlwmanifest.xml
//media/wp-includes/wlwmanifest.xml
//wp1/wp-includes/wlwmanifest.xml

Thanks in advance!

1 Like

Are you using Wordpress in the first place?

No, we are not using WP.

In that case you could simply configure the following firewall rule

2 Likes

Awesome, thanks Sandro!

In my case, since my website does not use any Wordpress either, I stripped any/all wp directories out of the server… so there is no path to any of that.

Thanks Chris, I’ll double check to make sure any wp/ dir are wiped.

This topic was automatically closed after 31 days. New replies are no longer allowed.