If your website doesn’t run on WordPress, you probably don’t want bots, crawlers, or even misconfigured scripts trying to access paths like /wp-login.php, /wp-admin, or /wp-json. These requests are completely irrelevant for your stack — yet they keep showing up in your server logs, week after week.

These are usually signs of automated scans looking for vulnerabilities. Left unaddressed, they pollute your analytics, waste server resources, and give false signals to SEO tools and performance monitors.

Even worse, some crawlers interpret the presence of such URLs (even with 404 responses) as signs of poor architecture or unmaintained websites.

With redirection.io, you can actively block all incoming requests targeting these WordPress-specific endpoints — instantly and permanently — without having to touch your infrastructure or deploy complex security rules.

What does this recipe do?

This recipe scans all incoming traffic and blocks any request that matches common WordPress paths, such as:

  • /wp-login.php
  • /wp-admin/
  • /wp-json/
  • /xmlrpc.php
  • /wp-content/

When a match is detected, redirection.io returns a 404 Not Found response — stopping the request in its tracks, without touching your origin infrastructure. Also, this request will be hidden in the logs, allowing your logs remain clean and focused on legitimate website traffic.

The result: a cleaner log, a safer environment, and more accurate analytics.

Why install this recipe?

Even if you’ve never used WordPress, search engines and bots may assume otherwise — because of URL patterns that are widely used across the web.

Blocking these requests helps:

  • Reduce your server noise, leading to faster dashboards and cleaner SEO reports
  • Prevent false positives in security scans and audits
  • Stop opportunistic crawlers from hammering your endpoints looking for vulnerabilities
  • Enhance your professional image by rejecting "generic" traffic that doesn’t belong on your stack
  • Reduce your servers workload by stopping these requests at a very early stage

For agencies, this recipe is a perfect “default rule” to add across all non-WordPress projects — saving time and protecting clients effortlessly.

How to install this recipe on my website with redirection.io?

Installing this recipe on your website requires the following steps:

  1. click on "Install on my website"
  2. review the newly created rules and edit it to fit your needs
  3. publish the ruleset

Discover our recipes to improve your website's quality in one click

redirection.io's recipes are a powerful feature designed to simplify the implementation of front-end quality best practices for your websites. Think of them as a curated "app store" for your site, offering a variety of pre-configured solutions that can be installed with a single click.

Discover all redirection.io recipes