WordPress most scanned URLs - all time
Sep 17, 2025
Automatically updated daily

Checking for 404 errors in your logs can reveal more than just broken links, it can also expose files and URLs that attackers are actively scanning for. To track this behavior, we set up hundreds of honeypots and analyzed live web traffic data, giving us insight into which files and URLs are being targeted across the internet.


The table bellow list the top URLs being scanned on WordPress sites. This list of updated daily and shows the top plugins, backdoors and files that attacker are lookin for specifically to WordPress.


Rank Scanned URL Counter
#1 /wp-login.php333,233
#2 /wp-json/oembed/1.0/embed26,091
#3 /wp-content/plugins/hellopress/wp_filemanager.php17,019
#4 /wordpress14,365
#5 /wp12,990
#6 /wp-admin11,987
#7 /wp.php10,510
#8 /wp-content/plugins/woocommerce/includes/gateways/locks.php7,910
#9 /wp-content/plugins/fix/up.php7,704
#10 /wp-includes/wlwmanifest.xml7,243
#11 /wp-cron.php7,037
#12 /wordpress/wp-admin/setup-config.php6,716
#13 /wp-admin/images/moon.php6,582
#14 /web/wp-includes/wlwmanifest.xml5,939
#15 /wordpress/wp-includes/wlwmanifest.xml5,881
#16 /wp/wp-includes/wlwmanifest.xml5,804
#17 /wp-content/wp-conflg.php5,741
#18 /wp-plain.php5,702
#19 /wp-admin/classwithtostring.php5,681
#20 /blog/wp-includes/wlwmanifest.xml5,607
#21 /wp-admin/setup-config.php5,595
#22 /wp-admin/wp-conflg.php5,580
#23 /wp-api.php5,489
#24 /2019/wp-includes/wlwmanifest.xml5,475
#25 /shop/wp-includes/wlwmanifest.xml5,427
#26 /wp-includes/fonts/admin.php5,301
#27 /website/wp-includes/wlwmanifest.xml5,298
#28 /wp-setup.php5,289
#29 /wp-admin/css/colors/blue/index.php5,244
#30 /news/wp-includes/wlwmanifest.xml5,192
#31 /wp-content/index.php5,163
#32 /wp-admin/maint/about.php5,125
#33 /appWP/lab/wp-admin/css/colors/blue/blue.php4,765
#34 /wp-admin/js/index.php4,752
#35 /wp-includes/IXR/autoload_classmap.php4,709
#36 /wp-content/about.php4,562
#37 /wp-includes/fonts/index.php4,561
#38 /wp-content/themes/seotheme/db.php4,406
#39 /wp-content/autoload_classmap.php4,394
#40 /wp-admin/css4,334
#41 /wp-admin/js/widgets/cloud.php4,268
#42 /wp-admin/file.php4,240
#43 /wp-admin/js/autoload_classmap.php4,220
#44 /wp-admin/index.php4,156
#45 /wp-content/plugins/wpterm.php4,145
#46 /wp-json/custom/v14,107
#47 /wordpress/wp-login.php3,990
#48 /wp-admin/includes/index.php3,778
#49 /wp-admin/network/network.php3,665
#50 /wp-content/themes/admin.php3,602
#51 /wp-content/admin.php3,509
#52 /wp-content3,494
#53 /wp-includes/blocks/about.php3,413
#54 /wp-content/themes/about.php3,413
#55 /wp-admin/css/qPyYcxpHKCu.php3,410
#56 /wp-admin/js/about.php3,383
#57 /wp-l0gin.php3,375
#58 /wp-includes/wp-class.php3,373
#59 /wp-admin/profile.php3,332
#60 /wp-admin/plugins.php3,306
#61 /wp-admin/wp-login.php3,279
#62 /wp-admin/mah.php3,268
#63 /wp-admin/edit.php3,251
#64 /wp-admin.php3,197
#65 /2020/wp-includes/wlwmanifest.xml3,179
#66 /wp-admin/chosen.php3,118
#67 /wp-admin/css/colors/ectoplasm/about.php3,112
#68 /wp-admin/admin-ajax.php3,108
#69 /wp-admin/css/colors/blue/about.php3,107
#70 /wp-aa.php3,049
#71 /wp-admin/install.php3,033
#72 /wp-sitemap.xml3,030
#73 /wp-includes/about.php3,024
#74 /wp-signin.php3,001
#75 /wp-admin/wp-admins.php2,913
#76 /wp-admin/js2,904
#77 /wp-content/uploads/de_fb_uploads/b.php2,897
#78 /wp-trackback.php2,891
#79 /wp-admin/wp.php2,874
#80 /wp-content/plugins/WordPressCore/include.php2,859
#81 /wp-includes/ID3/index.php2,855
#82 /wp-admin/css/colors/light/wp-login.php2,829
#83 /wp-admin/js/wp-conflg.php2,808
#84 /wp-admin/css/colors/blue2,805
#85 /wp-content/plugins/pwnd/as.php2,779
#86 /wp-conflg.php2,749
#87 /wp-content/plugins/autoload_classmap.php2,739
#88 /wp-includes/html-api/about.php2,737
#89 /wp-admin/admin.php2,700
#90 /wp-admin/includes/colour.php2,669
#91 /wp-admin/includes/header.php2,660
#92 /wp-admin/css/colors/blue/atomlib.php2,561
#93 /wp-includes/ALFA_DATA/alfacgiapi/perl.alfa2,550
#94 /wp-admin/includes/wp-conflg.php2,546
#95 /wp-content/languages/autoload_classmap.php2,489
#96 /wp-content/plugins/about.php2,463
#97 /wp-content/classwithtostring.php2,453
#98 /wp-admin/autoload_classmap.php2,440
#99 /wp-content/uploads/json.php2,428
#100 /wp-logs.php2,395
#101 /wp-wso.php2,393
#102 /2018/wp-includes/wlwmanifest.xml2,376
#103 /wp-setting.php2,359
#104 /wp-content/plugins/ioxi/ioxi/dropdown.php2,355
#105 /wp-content/plugins/up/main.php2,353
#106 /wp_wrong_datlib.php2,352
#107 /wp-content/plugin.php2,320
#108 /wp-content/x.php2,318
#109 /wp-content/1.php2,316
#110 /wp-content/wp.php2,303
#111 /wp-config.php.bak2,261
#112 /wp-content/click.php2,207
#113 /wp-includes/widgets/autoload_classmap.php2,199
#114 /wp-includes/fonts/autoload_classmap.php2,199
#115 /wp-includes/IXR/chosen.php2,198
#116 /wp-comments.php2,195
#117 /wp-includes/style-engine/autoload_classmap.php2,176
#118 /wp-error.php2,152
#119 /wp-includes/wp_class_datlib.php2,149
#120 /wp-includes/css/autoload_classmap.php2,143
#121 /sanitas-bk/wp-json/metform/v1/forms/views/6542,140
#122 /wp-includes/PHPMailer/file.php2,129
#123 /wp-includes/js/tinymce/langs/about.php2,122
#124 /wp-config2,121
#125 /wp-admin/includes/about.php2,107
#126 /wp-includes/pomo/about.php2,099
#127 /wp-includes/certificates/chosen.php2,086
#128 /wp-content/uploads/chosen.php2,075
#129 /wp-includes/SimplePie/chosen.php2,073
#130 /wp-admin/images/about.php2,044
#131 /wp-admin/maint2,029
#132 /wp-content/file.php2,015
#133 /wp-content/plugins/revslider/includes/external/page/index.php1,954
#134 /wp-admin/js/widgets/index.php1,940
#135 /wp-includes/autoload_classmap.php1,901
#136 /wp-admin/css/about.php1,869
#137 /wp-file.php1,861
#138 /wp-content/plugins/simple/simple.php1,828
#139 /wp1/wp-includes/wlwmanifest.xml1,807
#140 /wp-content/themes/seotheme/mar.php1,782
#141 /wp-admin/includes1,760
#142 /wp-content/plugins/pwnd/pwnd.php1,744
#143 /wp-content/style.php1,693
#144 /wp-includes/blocks/wp-conflg.php1,677
#145 /wp-content/plugins/wp-conflg.php1,652
#146 /wp-gr.php1,634
#147 /wp-includes/ID3/about.php1,631
#148 /wp-content/uploads/index.php1,608
#149 /wp-includes/Requests/about.php1,600
#150 /wp-admin/js/widgets1,560
#151 /wp-2019.php1,554
#152 /wp-admin/images/cloud.php1,529
#153 /wp-configs.php1,518
#154 /wp-content/themes/twentytwenty/404.php1,507
#155 /wp-content/uploads1,506
#156 /wp-blog.php1,500
#157 /wp-links.php1,498
#158 /wp-content/themes/classwithtostring.php1,489
#159 /wp-admin/images/index.php1,481
#160 /wp-includes/rest-api/index.php1,480
#161 /wp-includes/SimplePie/about.php1,477
#162 /wp-includes/blocks/calendar/index.php1,475
#163 /wp-includes/ID31,469
#164 /wp-includes/Text/about.php1,467
#165 /wp-admin/css/colors/blue/admin.php1,459
#166 /wp-content/plugins/admin.php1,424
#167 /wp-includes/customize/chosen.php1,423
#168 /wp-admin/css/index.php1,414
#169 /wp-admin/function.php1,407
#170 /es/wp-json/oembed/1.0/embed1,395
#171 /wp-content/plugins/janus/janus.php1,385
#172 /wp-includes/customize/about.php1,382
#173 /wp-includes/Text/autoload_classmap.php1,382
#174 /wp-includes/js/jcrop/Jcrop.php1,374
#175 /wp-content/plugins/index.php1,370
#176 /wp-includes/blocks/site-title/index.php1,369
#177 /wp-json/litespeed/v1/cdn_status1,367
#178 /wp-admin/dropdown.php1,357
#179 /wp-content/plugins/apikey/apikey.php1,354
#180 /wp-content/plugins/dummyyummy/wp-signup.php1,342
#181 /wp-includes1,342
#182 /wp-admin/includes/xmrlpc.php1,337
#183 /wp-content/languages/about.php1,335
#184 /wp-content/themes/pridmag/db.php1,334
#185 /wp-json/storychief1,332
#186 /wp-includes/pomo/pomo.php1,326
#187 /wp-admin/style.php1,320
#188 /wp-content/themes/wp-pridmag/init.php1,319
#189 /wp-includes/widgets/about.php1,314
#190 /wp-signup.php1,312
#191 /wp-content/plugins/revslider/includes/external/page1,299
#192 /wp-includes/style-engine/about.php1,296
#193 /wp-json/wp-block-editor1,295
#194 /wp-includes/assets/index.php1,291
#195 /wp-admin/maint/index.php1,276
#196 /wp-includes/css1,268
#197 /test/wp-includes/wlwmanifest.xml1,238
#198 /wp-class.php1,218
#199 /wp-content/themes/style.php1,208
#200 /wp-admin/css/admin.php1,200
#201 /wp-content/plugins/apikey/apikey.php.suspected1,198
#202 /sanitas-bk/wp-json/metform/v1/forms/views/7271,194
#203 /wp-includes/images/smilies/about.php1,194
#204 /wp-admin/css/colors/index.php1,190
#205 /wp-json/oembed1,181
#206 /wp-admin/user/xmrlpc.php1,171
#207 /wp-activate.php1,155
#208 /wp-json/wp1,154
#209 /wp-content/plugins/xt1,149
#210 /wp-admin/maint/admin.php1,147
#211 /wp-admin/images1,145
#212 /wp-json/wp-site-health1,139
#213 /site/wp-includes/wlwmanifest.xml1,138
#214 /cms/wp-includes/wlwmanifest.xml1,133
#215 /wp-admin/images/admin.php1,132
#216 /wp-includes/css/index.php1,126
#217 /cgi-bin/wp-login.php1,124
#218 /wp-includes/block-patterns/about.php1,123
#219 /wp-info.php1,122
#220 /wp-update.php1,120
#221 /wp-admin/user/chosen.php1,111
#222 /wp-admin/js/js/cache.php1,078
#223 /wp-admin/css/css/cache.php1,078
#224 /wp-includes/IXR/about.php1,078
#225 /wp-admin/images/images/cache.php1,076
#226 /wp-admin/css/colors/about.php1,068
#227 /wp-content/plugins/core-plugin/include.php1,062
#228 /wp-content/themes1,057
#229 /wp-content/upgrade/index.php1,054
#230 /wp-includes/images/about.php1,053
#231 /wp-content/cong.php1,048
#232 /wp-json/sure-triggers/v11,040
#233 /wp-includes/install.php1,040
#234 /wp-content/upgrade-temp-backup/about.php1,029
#235 /wp-admin/css/colors1,026
#236 /wp-old1,021
#237 /wp-includes/rest-api/about.php1,011
#238 /wp-content/plugins/janusv5/janus.php1,010
#239 /wp-includes/wp-includes_function.php1,006
#240 /wp-admin/x.php1,001
#241 /wp-includes/SimplePie997
#242 /sim.php/wp-includes/certificates/plugins.php994
#243 /wp-admin/network/index.php988
#244 /wp-admin/css/colors/midnight/colors.php986
#245 /wp-content/upgrade972
#246 /wp-content/themes/index.php969
#247 /wp-admin/css/colors/blue/xboom.php968
#248 /wp-admin/css/colors/sunrise952
#249 /wp-admin/includes/cloud.php946
#250 /wp-content/plugins/pwnd-1/pwnd.php943
#251 /wp-admin/user/wp-login.php942
#252 /wp-admin/css/colors/midnight941
#253 /wp-includes/Text/wp-conflg.php932
#254 /wp-admin/users.php932
#255 /wp-admin/css/colors/ocean929
#256 /blog/wp-login.php916
#257 /wp-admin/maint/siteone.php912
#258 /wp-json/elementor-ai911
#259 /wp-includes/block-supports/index.php906
#260 /wp-admin/js/widgets/about.php894
#261 /wp-admin/network/chosen.php891
#262 /wp-config-sample.php891
#263 /wp-admin/js/let.php879
#264 /wp-json/elementor-pro879
#265 /wp-admin/css/colors/light/browser.php872
#266 /wp-admin/maint/techl.php863
#267 /wp-admin/css/colors/blue/uploader.php851
#268 /wp-content/themes/alera/alpha.php850
#269 /wp-admin/css/wp-admins.php841
#270 /wp-admin/images/lightspped.php840
#271 /wp-files.php838
#272 /wp-json/elementor838
#273 /wp-content/languages/index.php835
#274 /wp-content/plugins/Cache/Cache.php826
#275 /wp-admin/images/xmrlpc.php821
#276 /wp-includes/sitemaps/providers819
#277 /wp-admin/css/colors/ectoplasm819
#278 /wp-json/wordfence810
#279 /wp-includes/index.php803
#280 /wp-config.php800
#281 /wp-mail.php798
#282 /wp-includes/rest-api798
#283 /wp-admin/includes/port.php790
#284 /wp-fmfile.php790
#285 /wp-includes/sitemaps/rz.php787
#286 /wp/wp-admin/includes786
#287 /wp-admin/user784
#288 /wp-includes/images/wp-login.php778
#289 /wordpress-vs-html776
#290 /wp-includes/customize769
#291 /wp-content/content.php766
#292 /wp-json766
#293 /wp-admin/css/colors/ectoplasm/wp-login.php763
#294 /wp-blog-header.php762
#295 /wp-admin/edit-tags.php757
#296 /wp-includes/js/codemirror/index.php756
#297 /wp-content/uploads/wp-conflg.php754
#298 /wp-content/plugins751
#299 /wp2/wp-includes/wlwmanifest.xml751
#300 /wp-includes/admin.php747
#301 /wp-content/plugins/linkpreview/db.php744
#302 /wp-includes/class-wp-network-cron.php740
#303 /wp-includes/certificates735
#304 /wp-content/themes/twenty/twenty.php733
#305 /wp-admin/css/colors/light/about.php733
#306 /wp-admin/css/colors/light733
#307 /wp-seo.php731
#308 /wp-includes/Text/Diff/Renderer/about.php730
#309 /wp-includes/customize/index.php727
#310 /wp-includes/images/smilies/index.php724
#311 /wp-includes/pomo723
#312 /wp-admin/maint/wp-login.php719
#313 /wp-content/plugins/seoplugins/db.php717
#314 /wp-includes/ID3/el.php713
#315 /wp-includes/SimplePie/index.php713
#316 /.well-known/pki-validation/wp-login.php712
#317 /wp-admin/network/xmrlpc.php709
#318 /wp-includes/fonts708
#319 /wp-includes/PHPMailer708
#320 /wp-admin/css/colors/blue/wp-login.php705
#321 /wp-content/plugins/seoplugins/mar.php703
#322 /wp-admin/meta703
#323 /wp-includes/we2.php698
#324 /wp-includes/x.php696
#325 /wp-admin/css/colors/coffee/index.php694
#326 /wp-content/languages/chosen.php693
#327 /wp-admin/user/index.php691
#328 /wp-json/google-site-kit689
#329 /wp-head.php687
#330 /wp-includes/js/tinymce/skins/lightgray/img/index.php687
#331 /wp-index.php686
#332 /sito/wp-includes/wlwmanifest.xml686
#333 /wp-content/plugins/elementor/assets/js/undefined680
#334 /wp-admin/network/cloud.php680
#335 /wp-content/uploads/autoload_classmap.php672
#336 /wp-content/plugins/wp-help/admin/wp-fclass.php670
#337 /wp-admin/css/wp-css.php669
#338 /wp-admin/radio.php669
#339 /wp-includes/css/wp-conflg.php667
#340 /wp-includes/Text/Diff/Engine/about.php664
#341 /wp-content/themes/file.php661
#342 /wp-includes/html-api658
#343 /wp-theme.php657
#344 /wp-includes/images648
#345 /wp-admin/css/colors/modern647
#346 /features/wordpress-management-tools646
#347 /wp-admin/wp-admin.php644
#348 /wp-json/sure-triggers/v1/automation/action644
#349 /wp-remote-api642
#350 /wp-admin/css/colors/blue/ff.php637
#351 /wp-admin/alfa.php637
#352 /wp-admin/js/admin.php636
#353 /wp-includes/IXR/index.php630
#354 /wp/wp-login.php629
#355 /wp-admin/includes/class-core-upgrader-first.php625
#356 /wp-admin/images/download.php624
#357 /wp-content/themes/aahana/json.php624
#358 /wp-includes/PHPMailer/admin.php623
#359 /wp-admin/network621
#360 /wp-includes/Text/Diff/alfa-rex.php617
#361 /wp-includes/fonts/about.php616
#362 /wp-admin/css/colors/blue/aurora%20(1).php614
#363 /wp-admin/css/wp-login.php613
#364 /wp-content/plugins/bdthemes-prime-slider-lite/images/backgrounds613
#365 /wp-admin/about.php608
#366 /wp-includes/ID3/autoload_classmap.php603
#367 /wp-includes/IXR/goto.php601
#368 /wp-json/wp-rocket597
#369 /wp-admin/js/widgets/about.php7597
#370 /wp-admin/css/colors/midnight/gmail.php596
#371 /wp-mn.php595
#372 /wp-includes/SimplePie/admin.php594
#373 /wp-admin/css/colors/blue/VzlaTeam.php593
#374 /wp-includes/html-api/wp-login.php592
#375 /wp-content/plugins/wp-automatic/inc/csv.php589
#376 /wp-includes/IXR/wp-login.php588
#377 /wp-admin/admin-post.php586
#378 /wp-admin/images/install.php584
#379 /wp-includes/assets583
#380 /wp-content/radio.php582
#381 /wp-admin/includes/BDKR28_shell.php580
#382 /wp-json/aioseo580
#383 /wp-json/hfe579
#384 /wp-content/uploads/about.php579
#385 /wp-admin/css/colors/blue/info.php578
#386 /wp-admin/includes/class-wp-privacy-data-removal-requests-list-table-package.php578
#387 /wp-activat.php578
#388 /wp-admin/includes/el.php576
#389 /wp-includes/plugins.php576
#390 /wp-json/webp-converter575
#391 /wp-admin/css/colors/ectoplasm/upload.php573
#392 /wp-admin/js/widgets/zip.php571
#393 /wp-json/elementor-hello-elementor569
#394 /wp-json/v1/u565
#395 /wp-json/buddyboss-app/v1/signup/form561
#396 /wp-admin/includes/theme-install.php.INFECTED.php555
#397 /wp-admin/css/colors/coffee/cloud.php555
#398 /wp-content/cache/index.php550
#399 /wp-admin/css/colors/coffee550
#400 /wp-content/uploads/elementor/css/link%20da%20imagem550
#401 /wp-includes/feed-rsss.php548
#402 /wp-content/install.php547
#403 /wp-admin/js/wp-login.php543
#404 /wp-content/uploads/2022/10/upload.php542
#405 /wp-content/plugins/litespeed-cache/guest.vary.php541
#406 /wp-content/plugins/up/up.php541
#407 /wp-admin/maint/edit.php539
#408 /wp-content/themes/astra/inc/ki1k.php536
#409 /wp-admin/includes/template.php.INFECTED.php535
#410 /wp-content/upgrade/about.php534
#411 /wp-admin/includes/plugin-install.php.INFECTED.php533
#412 /wp-includes/certificates/about.php528
#413 /wp-admin/includes/menu-cookie.php527
#414 /wp-content/uploads/2024/index.php527
#415 /wp-admin/images/profile.php526
#416 /wp-includes/pomo/index.php522
#417 /wp-includes/css/about.php520
#418 /wp-header.php516
#419 /wp-includes/Requests514
#420 /wp-includes/class-wp-feed-cache-transient-part.php511
#421 /wp-content/themes/twentytwentytwo/index.php510
#422 /wp-includes/embed-database.php507
#423 /wp-includes/hel.php507
#424 /wp-content/plugins/view-more/ioxi.php506
#425 /wp-includes/certificates/wp-login.php505
#426 /wp-content/x500
#427 /wp-22.php500
#428 /wp-content/dn.php499
#429 /wp-content/x/index.php499
#430 /wp-admin/js/chosen.php495
#431 /wp-admin/css/network.php493
#432 /wp-json/wp/v2/users493
#433 /wp-includes/css/admin.php490
#434 /wp-includes/Text/Diff/Engine.php488
#435 /wp-includes/Requests/Text/admin.php488
#436 /wp-includes/ID3/admin.php487
#437 /wp-includes/repeater.php487
#438 /wp-includes/js/codemirror487
#439 /wp-includes/css/dist486
#440 /wp-content/worksec.php485
#441 /wp-includes/images/media484
#442 /wp-admin/maint/fie.php484
#443 /wp-includes/css/babu.php480
#444 /wp-includes/theme-compat/about.php480
#445 /wp-content/plugins/php-migrator/migrator.php477
#446 /wp-includes/ID3/module.audio-video.as.php475
#447 /wp-includes/html-api/chosen.php475
#448 /wp-includes/IXR/admin.php475
#449 /shop/wp-login.php472
#450 /wp-sigunq.php471
#451 /wp-content/plugins/envato-market/inc/class-envato-market-github.php469
#452 /wp-includes/f35.php468
#453 /wp-editor.php467
#454 /wp-includes/fonts/wp-login.php466
#455 /wp-content/atomlib.php458
#456 /wp-includes/Requests/library455
#457 /wp-content/plugins/linkpreview453
#458 /wp-admin/css/colors/blue/system_log.php451
#459 /wp-json/forminator449
#460 /wp-admin/maint/maint/ajax-actions.php448
#461 /wp-content/mu-plugins-old448
#462 /wp-includes/images/crystal446
#463 /wp-admin/doc.php445
#464 /wp-admin/css/as.php444
#465 /wp-admin/maint/wp.php444
#466 /wp-includes/sitemaps444
#467 /wp-admin/ajax-actions.php443
#468 /wp-content/plugins/core/include.php443
#469 /wp-admin/css/getid3s.php442
#470 /wp-includes/IXR442
#471 /wp-admin/network/getid3s.php440
#472 /wp-includes/Text/Diff/Renderer439
#473 /wp-admin/css/colors/coffee/alfa-rex.php438
#474 /wp-json/wp/v2/posts438
#475 /wp-includes/Text/Diff/Engine/wp-login.php437
#476 /wp-admin/pages.php437
#477 /wp-json/nps-survey437
#478 /new/wp-admin/setup-config.php437
#479 /wp-includes/Text/Diff/Engine/index.php436
#480 /wp-content/uploads/cong.php435
#481 /wp-content/plugins/linkpreview/index.php435
#482 /wp/wp-admin/setup-config.php435
#483 /wp-includes/js/codemirror/about.php433
#484 /wp-content/uploads/makeasmtp.php428
#485 /wp-admin/js/widgets/xmrlpc.php426
#486 /wp-admin/user/cloud.php426
#487 /wp-content/uploads/2021426
#488 /wp-admin/network/about.php425
#489 /wp-includes/wp-mail.php424
#490 /wp-includes/fonts/class-wp-font-library.php424
#491 /wp-includes/blocks424
#492 /wp-corn-sample.php423
#493 /wp-content/plugins/ubh/1.php423
#494 /wp-content/style-css.php423
#495 /wp-includes/ID3/file.php423
#496 /wp-admin/xmrlpc.php423
#497 /wp-json/hub-connector423
#498 /wp-includes/rest-api/endpoints/index.php422
#499 /.well-known/wp-login.php421
#500 /wp-content/languages/wp-login.php421


Data was last updated on: Sep 17, 2025



Posted in: web-logsthreat-intelwordpress
Logging Research

We love logs. In this section we will share some of the data we are parsing from our logs and honeypots we have live.

Trunc Logging

Logging for fun and a good night of sleep.

  • Real time search
  • Google simple
  • Cheap
  • Just works
  • PCI compliance
Trunc Research

Latest log-based threat analysis added.

Contact us!

Do you have an idea for a research that is not here? See something wrong? Contact us at support@noc.org

Tired of price gouging
  • Clear pricing
  • No need to guess
  • Real people
  • Real logging

Simple, Affordable, Log Management and Analysis.

14 days free trial. No credit card required.

Get Started