Hi, yes there is. You need to google for this information. Here is a code shared in the forum by one of the developers.
Below is the IIS equivalent to the Apache .htaccess rules for denying access to xmlrpc.php. ( Solution quoted by wpsolutions)
<security>
<requestFiltering>
<denyUrlSequences>
<add sequence="xmlrpc.php" />
</denyUrlSequences>
</requestFiltering>
</security>