Security Blog

How to hide wp-admin and wp-login.php from possible attacks

Hiding wp-admin is an easy​ ​​yet an effective way of reducing the number of attacks from dumb bots and hackers. It's a great tool for reducing attack surface.


With WP Cerber Security you can do that with several clicks.

  1. Open WP Cerber main settings page.
  2. Check Disable automatic redirecting to login page when /wp-admin/ is requested by unauthorized request
  3. Enter your desired custom login URL into the Custom login URL field
  4. Remember or bookmark custom login UR, otherwise you will not be able to log in.
  5. Check Block direct access to wp-login.php and return HTTP 404 Not Found Error
  6. Save settings. Done!
How to hide wp-admin with WordPress

How to hide wp-admin

Last posts from WordPress security blog


<p>I’m a team lead in Cerber Tech. I’m a software & database architect, WordPress – PHP – SQL – JavaScript developer. I started coding in 1993 on IBM System/370 (yeah, that was amazing days) and today software engineering at Cerber Tech is how I make my living. I’ve taught to have high standards for myself as well as using them in developing software solutions.</p>