Assuming a VPS with multiple applications, a common probe of malicious actors is to request known paths, such as
/wp-content/ /solr/
The goal
