Kullanıcı1233
Kıdemli Üye
- 19 Tem 2011
- 4,371
- 12
Hello guys today i will be telling you finding vulnerabilities on the Wordpress sities with WpScan(Open Source) tool. There will be WpScan on the Kali Linux already. You don't have to make installation for this.
-Usage of the WpScan-
For the see our parameters:
Code:
wpscan
For the list of theme:
Code:
wpscan -url örneksite.com -enumerate -t
For the list of pulugins:
Code:
wpscan -url mrneksite.com enumerate -p
For the make an BruteForce attack:
Code:
wpscan -url örneksite.com -wordlist şifreler.txt
For use proxy:
Code:
wpscan -url örneksite.com -proxy iport
For accessing the already registered users informations:
Code:
wpscan -url örneksite.com -enumerate u
For the find Timthumb vulnerabilities:
Code:
wpscan -url örneksite.com -enumerate tt
For the make an general scan:
Code:
wpscan -url örneksite.com
İ told you technic codes before this point. After that lets make a list of the steps.
Firstly with -u parameter we will be acces our user informations.
We have user informations and we will do BruteForce attack after that.
Code:
wpscan-url hedefsite.com -wordlist şifreler.txt -username -(BulduğumuzKullanıcıAdı)
Yes guys my topic is ending this point. Thank you for reading.
-----------------------------------------------------------
Source: https://www.turkhackteam.org/linux/1711910-wpscan-ile-acik-tarama-stajyerasistankulubu.html
-Usage of the WpScan-
For the see our parameters:
Code:
wpscan
For the list of theme:
Code:
wpscan -url örneksite.com -enumerate -t
For the list of pulugins:
Code:
wpscan -url mrneksite.com enumerate -p
For the make an BruteForce attack:
Code:
wpscan -url örneksite.com -wordlist şifreler.txt
For use proxy:
Code:
wpscan -url örneksite.com -proxy iport
For accessing the already registered users informations:
Code:
wpscan -url örneksite.com -enumerate u
For the find Timthumb vulnerabilities:
Code:
wpscan -url örneksite.com -enumerate tt
For the make an general scan:
Code:
wpscan -url örneksite.com
İ told you technic codes before this point. After that lets make a list of the steps.
Firstly with -u parameter we will be acces our user informations.
We have user informations and we will do BruteForce attack after that.
Code:
wpscan-url hedefsite.com -wordlist şifreler.txt -username -(BulduğumuzKullanıcıAdı)
Yes guys my topic is ending this point. Thank you for reading.
-----------------------------------------------------------
Source: https://www.turkhackteam.org/linux/1711910-wpscan-ile-acik-tarama-stajyerasistankulubu.html
Translator: Xowly