if you using wordpress or any other script the first thing you need to consider is hiding your website admin panel and secure it .hide admin panel to of your website to make it secure
you don’t need attackers to find your admin panel the first thing they can do is brute force your website , in another meaning trying to guess your password and username in general using dangerous directions like /admin or /manager / or even /cms which means content management script
you will be underattack of random attackers usually random hackers use google dorks to find low security website for example the use inurl:/admin and allot of options will came out because they forget to dont allow google to show it .
some programmers prevent google from doing that by disallow it in robots.txt file and that not doing much because the attacker can browse robots.txt file and see the disallow orders that contains the admin panel direction
in other way if you have SQL injection in your website and the attacker exploit it and have your website username and password from the sql database its easy to guess your admin panel because it is /admin or any thing related to admin like there is some applications can guess your admin panel by trying about 5000 word and if you using anything related to admin as your admin panel direction your website will be hacked , read more about web security
what you need to do is chose a random admin panel name and change your admin panel direction to it , use something funny and you only and the editors know , chose like this one “cowmoon2801” and save it in password saver software
another thing if you have multi editors on your website you need to add reCAPTCHA from google so if your admin direction leaked recaptcha form google will stop any brute force attack to try guess your username and password by using 5TB file of passwords words to try guess ,that script will try and try and try your passowrd , and if you using strong password, that login orders will make your server go slower
if you using wordpress so the admin panel will be wp-admin
if you using WordPress you hide admin panel easily there is so many plugins can do that we will talk about one of them which is iThemes Security it is a professional plugin with so many features ,hide admin panel is one of features
go to the plugin page and go to advanced setting
from that list you need to chose hide back end but before changing any thing you should make backup
you will have these screen
enable your hide backend option feature and the option with login slug is the new admin direction SAFE IT IN GOOD PLACE SO YOU CAN REMMBER IT
chose what you want to have and use something random
you can also enable redirection slug to what ever you want in optional case it will redirect to not found page