Enable/Disable XML-RPC for all or based on IP list, also you can control pingback and Unset X-Pingback from HTTP headers.
You can now disable XML-RPC to avoid Brute force attack for given IPs or can even enable access for some IPs. XML-RPC on WordPress is actually an API that gives developers who build mobile apps, desktop apps and other services, the ability to talk to a WordPress site. The XML-RPC API that WordPress provides gives developers, a way to write applications (for you) that can do many of the things that you can do when logged into WordPress via the web interface.
Step 1: Install it
Install this plugin by navigating
Plugins -> Add New within your Admin dashboard, then searching for ' Plugin Name ', then click
Install, then activate.
Alternatively you can head over here, download the plugin and then upload and extract it to your WordPress plugins folder.
Step 2: Use it
Use the plugin as shown in the below screenshots:
Read more here.