WordPress Only
XML-RPC, or XML Remote Procedure Call is a protocol which uses XML to encode its calls and HTTP as a transport mechanism. Beginning in WordPress 3.5, XML-RPC is enabled by default. Hackers are known to use XML-RPC to crack wp-login.php, using zombie computers and servers scattering around the globe.
Disable XML-RPC-API
This plugin white-lists JetPack. If you don’t use JetPack, there is no need for this plugin, you can completely block XML-RPC access if you are using ALL IN ONE WP SECURITY & FIREWALL (under firewall).